def init(self):
self.title = 'Firewall'
self.icon = 'fire'
self.category = 'System'
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
actions = ['ACCEPT', 'DROP', 'REJECT', 'LOG', 'MASQUERADE', 'DNAT', 'SNAT'] + \
list(set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables])))
u.find('action-select').labels = actions
u.find('action-select').values = actions
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = ['Add option'] + sorted(OptionData.templates.keys())
def init(self):
self.title = _('Firewall')
self.icon = 'fire'
self.category = _('System')
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = self.manager_class.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path_ajenti)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
u.find('title').text = i.comment if i.comment else i.summary
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
if action:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = [
_('Add option')
] + sorted(OptionData.templates.keys())
def init(self):
self.title = "Firewall"
self.icon = "fire"
self.category = "System"
self.append(self.ui.inflate("iptables:main"))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path)
self.binder = Binder(None, self.find("config"))
self.find("tables").new_item = lambda c: TableData()
self.find("chains").new_item = lambda c: ChainData()
self.find("rules").new_item = lambda c: RuleData()
self.find("options").new_item = lambda c: OptionData()
self.find("options").binding = OptionsBinding
self.find("options").filter = lambda i: not i.name in ["j", "jump"]
def post_rule_bind(o, c, i, u):
u.find("add-option").on("change", self.on_add_option, c, i, u)
actions = ["ACCEPT", "DROP", "REJECT", "LOG", "MASQUERADE", "DNAT", "SNAT"] + list(
set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables]))
)
u.find("action-select").labels = actions
u.find("action-select").values = actions
action = ""
j_option = i.get_option("j", "jump")
if j_option:
action = j_option.arguments[0].value
u.find("action").text = action
u.find("action").style = "iptables-action iptables-%s" % action
u.find("action-select").value = action
def post_rule_update(o, c, i, u):
action = u.find("action-select").value
j_option = i.get_option("j", "jump")
if j_option:
j_option.arguments[0].value = action
else:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find("rules").post_item_bind = post_rule_bind
self.find("rules").post_item_update = post_rule_update
self.find("add-option").values = self.find("add-option").labels = ["Add option"] + sorted(
OptionData.templates.keys()
)
def init(self):
self.title = _('Firewall')
self.icon = 'fire'
self.category = _('System')
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path_ajenti)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
u.find('title').text = i.comment if i.comment else i.summary
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
if action:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = [_('Add option')] + sorted(OptionData.templates.keys())
class Firewall (SectionPlugin):
def init(self):
self.title = 'Firewall'
self.icon = 'fire'
self.category = 'System'
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
actions = ['ACCEPT', 'DROP', 'REJECT', 'LOG', 'MASQUERADE', 'DNAT', 'SNAT'] + \
list(set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables])))
u.find('action-select').labels = actions
u.find('action-select').values = actions
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = ['Add option'] + sorted(OptionData.templates.keys())
def on_page_load(self):
if not os.path.exists(self.fw_mgr.config_path):
subprocess.call('iptables-save > %s' % self.fw_mgr.config_path, shell=True)
self.config.load()
self.refresh()
def refresh(self):
self.binder.reset(self.config.tree).autodiscover().populate()
self.find('autostart').text = ('Disable' if self.fw_mgr.get_autostart_state() else 'Enable') + ' autostart'
@on('autostart', 'click')
def on_autostart_change(self):
self.fw_mgr.set_autostart_state(not self.fw_mgr.get_autostart_state())
self.refresh()
def on_add_option(self, options, rule, ui):
o = OptionData.create(ui.find('add-option').value)
ui.find('add-option').value = ''
rule.options.append(o)
self.binder.populate()
@on('save', 'click')
def save(self):
self.binder.update()
self.config.save()
self.refresh()
@on('edit', 'click')
def raw_edit(self):
self.context.launch('notepad', path='/etc/iptables.up.rules')
@on('apply', 'click')
def apply(self):
self.save()
cmd = 'cat /etc/iptables.up.rules | iptables-restore'
if subprocess.call(cmd, shell=True) != 0:
self.context.launch('terminal', command=cmd)
else:
self.context.notify('info', 'Saved')
class Firewall(SectionPlugin):
platforms = ['centos', 'debian', 'arch', 'mageia']
manager_class = FirewallManager
def init(self):
self.title = _('Firewall')
self.icon = 'fire'
self.category = _('System')
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = self.manager_class.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path_ajenti)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
u.find('title').text = i.comment if i.comment else i.summary
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
if action:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = [
_('Add option')
] + sorted(OptionData.templates.keys())
def on_page_load(self):
if not os.path.exists(self.fw_mgr.config_path_ajenti):
if not os.path.exists(self.fw_mgr.config_path):
open(self.fw_mgr.config_path, 'w').write("""
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 8000 -j ACCEPT
COMMIT
""")
open(self.fw_mgr.config_path_ajenti,
'w').write(open(self.fw_mgr.config_path).read())
self.config.load()
self.refresh()
@on('load-current', 'click')
def on_load_current(self):
subprocess.call(
'%s > %s' %
(self.fw_mgr.iptables_save_binary, self.fw_mgr.config_path_ajenti),
shell=True)
self.config.load()
self.refresh()
def refresh(self):
self.find('autostart').text = (_('Disable')
if self.fw_mgr.get_autostart_state()
else _('Enable')) + _(' autostart')
actions = ['ACCEPT', 'DROP', 'REJECT', 'LOG', 'MASQUERADE', 'DNAT', 'SNAT'] + \
list(set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables])))
self.find('action-select').labels = actions
self.find('action-select').values = actions
self.find('chain-action-select').labels = actions
self.find('chain-action-select').values = actions
self.binder.setup(self.config.tree).populate()
@on('autostart', 'click')
def on_autostart_change(self):
self.fw_mgr.set_autostart_state(not self.fw_mgr.get_autostart_state())
self.refresh()
def on_add_option(self, options, rule, ui):
self.binder.update()
o = OptionData.create(ui.find('add-option').value)
ui.find('add-option').value = ''
rule.options.append(o)
self.binder.populate()
@on('save', 'click')
def save(self):
self.binder.update()
for t in self.config.tree.tables:
for c in t.chains:
for r in c.rules:
r.verify()
self.config.save()
open(self.fw_mgr.config_path, 'w').write(''.join(
l.split('#')[0] + '\n'
for l in open(self.fw_mgr.config_path_ajenti).read().splitlines()))
self.refresh()
self.context.notify('info', _('Saved'))
@on('edit', 'click')
def raw_edit(self):
self.context.launch('notepad', path=self.fw_mgr.config_path_ajenti)
@on('apply', 'click')
def apply(self):
self.save()
cmd = 'cat %s | %s' % (self.fw_mgr.config_path,
self.fw_mgr.iptables_restore_binary)
if subprocess.call(cmd, shell=True) != 0:
self.context.launch('terminal', command=cmd)
else:
self.context.notify('info', _('Applied successfully'))
class Firewall (SectionPlugin):
platforms = ['centos', 'debian']
def init(self):
self.title = _('Firewall')
self.icon = 'fire'
self.category = _('System')
self.append(self.ui.inflate('iptables:main'))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path_ajenti)
self.binder = Binder(None, self.find('config'))
self.find('tables').new_item = lambda c: TableData()
self.find('chains').new_item = lambda c: ChainData()
self.find('rules').new_item = lambda c: RuleData()
self.find('options').new_item = lambda c: OptionData()
self.find('options').binding = OptionsBinding
self.find('options').filter = lambda i: not i.name in ['j', 'jump']
def post_rule_bind(o, c, i, u):
u.find('add-option').on('change', self.on_add_option, c, i, u)
action = ''
j_option = i.get_option('j', 'jump')
if j_option:
action = j_option.arguments[0].value
u.find('action').text = action
u.find('action').style = 'iptables-action iptables-%s' % action
u.find('action-select').value = action
u.find('title').text = i.comment if i.comment else i.summary
def post_rule_update(o, c, i, u):
action = u.find('action-select').value
j_option = i.get_option('j', 'jump')
if j_option:
j_option.arguments[0].value = action
else:
if action:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find('rules').post_item_bind = post_rule_bind
self.find('rules').post_item_update = post_rule_update
self.find('add-option').values = self.find('add-option').labels = [_('Add option')] + sorted(OptionData.templates.keys())
def on_page_load(self):
if not os.path.exists(self.fw_mgr.config_path_ajenti):
if not os.path.exists(self.fw_mgr.config_path):
open(self.fw_mgr.config_path, 'w').write("""
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
""")
open(self.fw_mgr.config_path_ajenti, 'w').write(open(self.fw_mgr.config_path).read())
self.config.load()
self.refresh()
@on('load-current', 'click')
def on_load_current(self):
subprocess.call('iptables-save > %s' % self.fw_mgr.config_path, shell=True)
self.config.load()
self.refresh()
def refresh(self):
self.find('autostart').text = (_('Disable') if self.fw_mgr.get_autostart_state() else _('Enable')) + _(' autostart')
self.binder.reset(self.config.tree)
actions = ['ACCEPT', 'DROP', 'REJECT', 'LOG', 'MASQUERADE', 'DNAT', 'SNAT'] + \
list(set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables])))
self.find('action-select').labels = actions
self.find('action-select').values = actions
self.find('chain-action-select').labels = actions
self.find('chain-action-select').values = actions
self.binder.autodiscover().populate()
@on('autostart', 'click')
def on_autostart_change(self):
self.fw_mgr.set_autostart_state(not self.fw_mgr.get_autostart_state())
self.refresh()
def on_add_option(self, options, rule, ui):
o = OptionData.create(ui.find('add-option').value)
ui.find('add-option').value = ''
rule.options.append(o)
self.binder.populate()
@on('save', 'click')
def save(self):
self.binder.update()
for t in self.config.tree.tables:
for c in t.chains:
for r in c.rules:
r.verify()
self.config.save()
open(self.fw_mgr.config_path, 'w').write(
''.join(
l.split('#')[0] + '\n'
for l in
open(self.fw_mgr.config_path_ajenti).read().splitlines()
)
)
self.refresh()
self.context.notify('info', _('Saved'))
@on('edit', 'click')
def raw_edit(self):
self.context.launch('notepad', path='/etc/iptables.up.rules')
@on('apply', 'click')
def apply(self):
self.save()
cmd = 'cat %s | iptables-restore' % self.fw_mgr.config_path
if subprocess.call(cmd, shell=True) != 0:
self.context.launch('terminal', command=cmd)
else:
self.context.notify('info', _('Applied successfully'))
class Firewall(SectionPlugin):
def init(self):
self.title = "Firewall"
self.icon = "fire"
self.category = "System"
self.append(self.ui.inflate("iptables:main"))
self.fw_mgr = FirewallManager.get()
self.config = IPTablesConfig(path=self.fw_mgr.config_path)
self.binder = Binder(None, self.find("config"))
self.find("tables").new_item = lambda c: TableData()
self.find("chains").new_item = lambda c: ChainData()
self.find("rules").new_item = lambda c: RuleData()
self.find("options").new_item = lambda c: OptionData()
self.find("options").binding = OptionsBinding
self.find("options").filter = lambda i: not i.name in ["j", "jump"]
def post_rule_bind(o, c, i, u):
u.find("add-option").on("change", self.on_add_option, c, i, u)
actions = ["ACCEPT", "DROP", "REJECT", "LOG", "MASQUERADE", "DNAT", "SNAT"] + list(
set(itertools.chain.from_iterable([[c.name for c in t.chains] for t in self.config.tree.tables]))
)
u.find("action-select").labels = actions
u.find("action-select").values = actions
action = ""
j_option = i.get_option("j", "jump")
if j_option:
action = j_option.arguments[0].value
u.find("action").text = action
u.find("action").style = "iptables-action iptables-%s" % action
u.find("action-select").value = action
def post_rule_update(o, c, i, u):
action = u.find("action-select").value
j_option = i.get_option("j", "jump")
if j_option:
j_option.arguments[0].value = action
else:
o = OptionData.create_destination()
o.arguments[0].value = action
i.options.append(o)
self.find("rules").post_item_bind = post_rule_bind
self.find("rules").post_item_update = post_rule_update
self.find("add-option").values = self.find("add-option").labels = ["Add option"] + sorted(
OptionData.templates.keys()
)
def on_page_load(self):
if not os.path.exists(self.fw_mgr.config_path):
subprocess.call("iptables-save > %s" % self.fw_mgr.config_path, shell=True)
self.config.load()
self.refresh()
def refresh(self):
self.binder.reset(self.config.tree).autodiscover().populate()
self.find("autostart").text = ("Disable" if self.fw_mgr.get_autostart_state() else "Enable") + " autostart"
@on("autostart", "click")
def on_autostart_change(self):
self.fw_mgr.set_autostart_state(not self.fw_mgr.get_autostart_state())
self.refresh()
def on_add_option(self, options, rule, ui):
o = OptionData.create(ui.find("add-option").value)
ui.find("add-option").value = ""
rule.options.append(o)
self.binder.populate()
@on("save", "click")
def save(self):
self.binder.update()
self.config.save()
self.refresh()
@on("edit", "click")
def raw_edit(self):
self.context.launch("notepad", path="/etc/iptables.up.rules")
@on("apply", "click")
def apply(self):
self.save()
cmd = "cat /etc/iptables.up.rules | iptables-restore"
if subprocess.call(cmd, shell=True) != 0:
self.context.launch("terminal", command=cmd)
else:
self.context.notify("info", "Saved")