]>
Commit | Line | Data |
---|---|---|
d56fc335 MT |
1 | #!/bin/sh |
2 | # Begin $rc_base/init.d/squid | |
3 | ||
4 | . /etc/sysconfig/rc | |
5 | . $rc_functions | |
6 | ||
18322edf CS |
7 | chown -R squid:squid /var/log/squid |
8 | chown -R squid:squid /var/log/squidGuard | |
9 | ||
d56fc335 MT |
10 | transparent() { |
11 | DEVICE=$1 | |
12 | ||
13 | eval $(/usr/local/bin/readhash /var/ipfire/ethernet/settings) | |
14 | eval $(/usr/local/bin/readhash /var/ipfire/proxy/settings) | |
15 | ||
16 | # If the proxy port is not set we set the default to 800. | |
17 | if [ -z $PROXY_PORT ]; then | |
18 | PROXY_PORT=800 | |
19 | fi | |
20 | ||
21 | LOCALIP=`cat /var/ipfire/red/local-ipaddress | tr -d \n` | |
22 | if [ -z $LOCALIP ]; then | |
23 | boot_mesg "Couldn't read local-ipaddress" ${FAILURE} | |
24 | exit 1 | |
25 | fi | |
26 | ||
27 | COUNT=1 | |
28 | FILE=/var/ipfire/vpn/config | |
29 | ||
30 | while read LINE; do | |
31 | let COUNT=$COUNT+1 | |
32 | CONN_TYPE=`echo "$LINE" | awk -F, '{ print $5 }'` | |
33 | if [ "$CONN_TYPE" != "net" ]; then | |
34 | continue | |
35 | fi | |
36 | iptables -t nat -A SQUID -i $1 -p tcp -d `echo "$LINE" | awk -F, '{ print $13 }'` --dport 80 -j RETURN | |
37 | done < $FILE | |
38 | ||
39 | if [ "$RED_TYPE" == "STATIC" ]; then | |
40 | iptables -t nat -A SQUID -i $1 -p tcp -d $RED_NETADDRESS/$RED_NETMASK --dport 80 -j RETURN | |
41 | fi | |
42 | ||
43 | iptables -t nat -A SQUID -i $1 -p tcp -d $LOCALIP --dport 80 -j RETURN | |
44 | ||
45 | iptables -t nat -A SQUID -i $1 -p tcp --dport 80 -j REDIRECT --to-port $PROXY_PORT | |
46 | } | |
47 | ||
48 | case "$1" in | |
49 | start) | |
50 | boot_mesg "Starting Squid Proxy Server..." | |
51 | ||
52 | if [ -e /var/ipfire/proxy/enable -o -e /var/ipfire/proxy/enable_blue ]; then | |
53 | loadproc /usr/sbin/squid -D -z >/dev/null 2>&1 | |
54 | loadproc /usr/sbin/squid -D | |
55 | fi | |
56 | ||
57 | eval $(/usr/local/bin/readhash /var/ipfire/ethernet/settings) | |
58 | ||
59 | if [ -e /var/ipfire/proxy/transparent ]; then | |
60 | transparent $GREEN_DEV | |
61 | fi | |
62 | if [ -e /var/ipfire/proxy/transparent_blue ]; then | |
63 | transparent $BLUE_DEV | |
64 | fi | |
65 | ;; | |
66 | ||
67 | stop) | |
68 | boot_mesg "Stopping Squid Proxy Server..." | |
69 | iptables -t nat -F SQUID | |
70 | squid -k shutdown >/dev/null 2>&1 | |
71 | evaluate_retval | |
d56fc335 | 72 | killproc /usr/bin/squidGuard >/dev/null |
186e3d2c MT |
73 | killproc /usr/sbin/updxlrator >/dev/null |
74 | killproc /usr/sbin/squid >/dev/null | |
d56fc335 MT |
75 | ;; |
76 | ||
77 | restart) | |
78 | $0 stop | |
186e3d2c | 79 | sleep 5 |
d56fc335 MT |
80 | $0 start |
81 | ;; | |
82 | ||
83 | status) | |
84 | statusproc /usr/sbin/squid | |
85 | statusproc /usr/lib/squid/unlinkd | |
86 | ;; | |
87 | ||
88 | flush) | |
89 | $0 stop | |
90 | echo > /var/log/cache/swap.state | |
91 | chown squid.squid /var/log/cache/swap.state | |
92 | sleep 1 | |
93 | $0 start | |
94 | ;; | |
95 | ||
96 | *) | |
97 | echo "Usage: $0 {start|stop|restart|status|flush}" | |
98 | exit 1 | |
99 | ;; | |
100 | esac | |
101 | ||
102 | # End $rc_base/init.d/squid |