projects
/
shutils.git
/ commitdiff
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (parent:
13f0d70
)
letsencrypt: Add path for iptables
author
Stefan Huber <shuber@sthu.org>
Mon, 13 Sep 2021 08:05:24 +0000
(10:05 +0200)
committer
Stefan Huber <shuber@sthu.org>
Mon, 13 Sep 2021 08:05:24 +0000
(10:05 +0200)
letsencrypt/renewal.sh
patch
|
blob
|
history
diff --git
a/letsencrypt/renewal.sh
b/letsencrypt/renewal.sh
index e6a4658f8b39c89759437b6d0bd253aa1055fc8e..83f3f4472512a5d7e3ff195964d48cc9c42e65ff 100644
(file)
--- a/
letsencrypt/renewal.sh
+++ b/
letsencrypt/renewal.sh
@@
-13,8
+13,8
@@
PORT80=$(lsof -ti :80 | wc -l)
if [ $PORT80 = 0 ]; then
cd /var/www/challenges
nohup python3 -m http.server 80 > /dev/null 2>&1 &
if [ $PORT80 = 0 ]; then
cd /var/www/challenges
nohup python3 -m http.server 80 > /dev/null 2>&1 &
- iptables -A INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
- ip6tables -A INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
+
/usr/sbin/
iptables -A INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
+
/usr/sbin/
ip6tables -A INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
fi
fi
@@
-55,7
+55,7
@@
done
# Stop temp web server and close port 80 if needed.
if [ $PORT80 = 0 ]; then
# Stop temp web server and close port 80 if needed.
if [ $PORT80 = 0 ]; then
- iptables -D INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
- ip6tables -D INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
+
/usr/sbin/
iptables -D INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
+
/usr/sbin/
ip6tables -D INPUT -i venet0 -p tcp --dport 80 -m conntrack --ctstate NEW -j ACCEPT
pkill -f http.server
fi
pkill -f http.server
fi