]>
Commit | Line | Data |
---|---|---|
949d5c52 MT |
1 | #!/bin/bash |
2 | ############################################################################ | |
3 | # # | |
4 | # This file is part of the IPFire Firewall. # | |
5 | # # | |
6 | # IPFire is free software; you can redistribute it and/or modify # | |
7 | # it under the terms of the GNU General Public License as published by # | |
8 | # the Free Software Foundation; either version 3 of the License, or # | |
9 | # (at your option) any later version. # | |
10 | # # | |
11 | # IPFire is distributed in the hope that it will be useful, # | |
12 | # but WITHOUT ANY WARRANTY; without even the implied warranty of # | |
13 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # | |
14 | # GNU General Public License for more details. # | |
15 | # # | |
16 | # You should have received a copy of the GNU General Public License # | |
17 | # along with IPFire; if not, write to the Free Software # | |
18 | # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA # | |
19 | # # | |
20 | # Copyright (C) 2013 IPFire-Team <info@ipfire.org>. # | |
21 | # # | |
22 | ############################################################################ | |
23 | # | |
24 | . /opt/pakfire/lib/functions.sh | |
25 | /usr/local/bin/backupctrl exclude >/dev/null 2>&1 | |
26 | ||
27 | # | |
28 | # Remove old core updates from pakfire cache to save space... | |
29 | core=74 | |
30 | for (( i=1; i<=$core; i++ )) | |
31 | do | |
32 | rm -f /var/cache/pakfire/core-upgrade-*-$i.ipfire | |
33 | done | |
34 | ||
35 | # Stop services | |
36 | ||
37 | ||
38 | # Extract files | |
39 | extract_files | |
40 | ||
41 | # Start services | |
42 | ||
43 | ||
44 | # Update Language cache | |
45 | perl -e "require '/var/ipfire/lang.pl'; &Lang::BuildCacheLang" | |
46 | ||
dfe0a20d MT |
47 | # Remove old openssl engines |
48 | rm -rf /usr/lib/engines | |
49 | ||
cf4d6bb7 MT |
50 | # Remove old initscripts |
51 | rm -f /etc/rc.d/init.d/networking/red.up/22-outgoingfwctrl | |
52 | rm -f /etc/rc.d/init.d/networking/red.up/25-portfw | |
53 | rm -f /etc/rc.d/init.d/networking/red.up/26-xtaccess | |
54 | ||
8dafd717 AM |
55 | # Remove old firewallscripts |
56 | rm -f /usr/local/bin/setportfw | |
57 | rm -f /usr/local/bin/setdmzholes | |
58 | rm -f /usr/local/bin/setxtaccess | |
59 | rm -f /usr/local/bin/outgoingfwctrl | |
60 | ||
cf4d6bb7 MT |
61 | # Remove old CGI files |
62 | rm -f /srv/web/ipfire/cgi-bin/{dmzholes,outgoingfw,portfw,xtaccess}.cgi | |
63 | ||
8ecb6450 AM |
64 | # Generate chains for new firewall |
65 | /sbin/iptables -N INPUTFW | |
66 | /sbin/iptables -N FORWARDFW | |
12f8cdd5 AM |
67 | /sbin/iptables -N POLICYFWD |
68 | /sbin/iptables -N POLICYIN | |
69 | /sbin/iptables -N POLICYOUT | |
70 | /sbin/iptables -t nat -N NAT_SOURCE | |
71 | /sbin/iptables -t nat -N NAT_DESTINATION | |
8ecb6450 | 72 | |
8d0aa710 | 73 | # Convert firewall configuration |
8ecb6450 AM |
74 | /usr/sbin/convert-xtaccess |
75 | /usr/sbin/convert-outgoingfw | |
76 | /usr/sbin/convert-portfw | |
77 | /usr/sbin/convert-dmz | |
8d0aa710 MT |
78 | |
79 | # Remove old firewall configuration files | |
80 | rm -rf /var/ipfire/{dmzholes,portfw,outgoing,xtaccess} | |
81 | ||
949d5c52 MT |
82 | sync |
83 | ||
84 | # This update need a reboot... | |
85 | touch /var/run/need_reboot | |
86 | ||
87 | # Finish | |
88 | # Update the fireinfo profile | |
89 | ( | |
90 | /etc/init.d/fireinfo start | |
91 | sendprofile | |
92 | ) >/dev/null 2>&1 & | |
93 | ||
94 | exit 0 |