add so-allow-view script/updates

dougburks · Dec 21, 2017 · c5805bf · c5805bf
1 parent 58f1174
commit c5805bf
Show file tree

Hide file tree

Showing 3 changed files with 15 additions and 15 deletions.
diff --git a/usr/sbin/so-allow-elastic b/usr/sbin/so-allow-elastic
@@ -108,23 +108,11 @@ case $input in
 	esac
 done
 
-iptbl_stats() {
-	echo "################"
-        echo "# Docker Rules #"
-        echo "################"
-        echo
-	echo "To                   Action From"
-	echo "--                   ------ ----"
-	iptables -vL DOCKER-USER |grep ACCEPT |grep -v "state RELATED,ESTABLISHED" |awk '{print $11,$4,$7,$3,$6,$8}'
-
-}
-
 #########################################
 # Status
 ########################################
 if [ "$device" == "status" ]; then
-        ufw status
-	iptbl_stats
+	/usr/sbin/so-allow-view
 	echo
 	exit 0
 fi
@@ -176,8 +164,7 @@ echo "Rule has been added."
 echo
 echo "Here is the entire firewall ruleset:"
 echo
-ufw status
-iptbl_stats
+/usr/sbin/so-allow-view
 echo
 
 if [ "$device" == "analyst" ]; then

diff --git a/usr/sbin/so-allow-view b/usr/sbin/so-allow-view
@@ -0,0 +1,5 @@
+#!/bin/bash
+. /usr/sbin/so-common
+header "UFW Rules"
+ufw status | sed -n '1!p'
+/usr/sbin/so-allow-view-iptables
diff --git a/usr/sbin/so-allow-view-iptables b/usr/sbin/so-allow-view-iptables
@@ -0,0 +1,8 @@
+#!/bin/bash
+. /usr/sbin/so-common
+header "Docker IPTables Rules"
+echo
+echo "To  		 Action From"
+echo "--               ------ ----"
+iptables -vL DOCKER-USER |grep ACCEPT |grep -v "state RELATED,ESTABLISHED" |awk '{print substr($11,5) "/" $4,$7,$3,$6,$8}'
+echo