#!/usr/bin/perl ############################################################################### # # # IPFire.org - A linux based firewall # # Copyright (C) 2007-2020 IPFire Team # # Copyright (C) 2024 BPFire # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # # the Free Software Foundation, either version 3 of the License, or # # (at your option) any later version. # # # # This program is distributed in the hope that it will be useful, # # but WITHOUT ANY WARRANTY; without even the implied warranty of # # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # # GNU General Public License for more details. # # # # You should have received a copy of the GNU General Public License # # along with this program. If not, see . # # # ############################################################################### use strict; # enable only the following on debugging purpose use warnings; use CGI::Carp 'fatalsToBrowser'; use IO::Socket; require '/var/ipfire/general-functions.pl'; require "${General::swroot}/location-functions.pl"; require "${General::swroot}/lang.pl"; require "${General::swroot}/header.pl"; #workaround to suppress a warning when a variable is used only once my @dummy = ( ${Header::colouryellow} ); undef (@dummy); my %color = (); my %mainsettings = (); my %settings=(); my %checked=(); my $errormessage=''; my $setting = "${General::swroot}/main/settings"; my $loxilbsettingfile = "${General::swroot}/loxilb/settings"; my $loxilbipfile = "${General::swroot}/loxilb/ipconfigfile"; # Read configuration file. &General::readhash("${General::swroot}/main/settings", \%mainsettings); &General::readhash("/srv/web/ipfire/html/themes/ipfire/include/colors.txt", \%color); &Header::showhttpheaders(); $settings{'ENABLE_LOXILB'} = 'off'; $settings{'ACTION'} = ''; $settings{'KEY1'} = ''; # point record for ACTION $settings{'virtualIP'} = ''; $settings{'interface'} = ''; my @nosaved=('virtualIP','interface', 'KEY1', 'SORT_virtualIPLIST'); #Define each field that can be used to sort columns my $sortstring='^virtualIP'; $settings{'SORT_virtualIPLIST'} = 'virtualIP'; # Load multiline data our @current = (); if (open(FILE, "$loxilbipfile")) { @current = ; close (FILE); } &Header::getcgihash(\%settings); if ($settings{'ACTION'} eq $Lang::tr{'save'}) { map (delete ($settings{$_}) ,(@nosaved)); &General::writehash("$loxilbsettingfile", \%settings); if ($settings{'ENABLE_LOXILB'} eq 'on') { &General::system('/usr/bin/touch', "${General::swroot}/loxilb/enableloxilb"); &General::system('/usr/local/bin/loxilbctrl', 'start'); } else { &General::system('/usr/local/bin/loxilbctrl', 'stop'); unlink "${General::swroot}/loxilb/enableloxilb"; } } if ($settings{'ACTION'} eq $Lang::tr{'add'}) { # Validate inputs if (!&General::validipandmask($settings{'virtualIP'})){ $errormessage = $Lang::tr{'invalid ip'}." / ".$Lang::tr{'invalid netmask'}; } #Check for already existing routing entry foreach my $line (@current) { chomp($line); # remove newline my @temp=split(/\,/,$line); $temp[1] ='' unless defined $temp[1]; # interface #Same ip already used? if($temp[0] eq $settings{'virtualIP'} && $settings{'KEY1'} eq ''){ $errormessage = $Lang::tr{'ccd err loxilbconfigeexist'}; last; } } unless ($errormessage) { if ($settings{'KEY1'} eq '') { #add or edit ? unshift (@current, "$settings{'virtualIP'},$settings{'interface'}\n"); &General::log($Lang::tr{'loxilb lb config added'}); } else { @current[$settings{'KEY1'}] = "$settings{'virtualIP'},$settings{'interface'}\n"; $settings{'KEY1'} = ''; # End edit mode &General::log($Lang::tr{'loxilb fw changed'}); } &CreateIP(%settings); # Write changes to config file. &SortDataFile; # sort newly added/modified entry #map ($settings{$_}='' ,@nosaved); # Clear fields } } if ($settings{'ACTION'} eq $Lang::tr{'remove'}) { my $line = @current[$settings{'KEY1'}]; # KEY1 is the index in current chomp($line); my @temp = split(/\,/, $line); $settings{'virtualIP'}=$temp[0]; $settings{'interface'}=$temp[1]; &DeleteIP(%settings); splice (@current,$settings{'KEY1'},1); # Delete line open(FILE, ">$loxilbipfile") or die "$loxilbipfile open error"; print FILE @current; close(FILE); $settings{'KEY1'} = ''; # End remove mode } ## Check if sorting is asked # If same column clicked, reverse the sort. if ($ENV{'QUERY_STRING'} =~ /$sortstring/ ) { my $newsort=$ENV{'QUERY_STRING'}; my $actual=$settings{'SORT_virtualIPLIST'}; #Reverse actual sort ? if ($actual =~ $newsort) { my $Rev=''; if ($actual !~ 'Rev') { $Rev='Rev'; } $newsort.=$Rev; } $settings{'SORT_virtualIPLIST'}=$newsort; map (delete ($settings{$_}) ,(@nosaved,'ACTION','KEY1'));# Must never be saved &General::writehash($setting, \%settings); &SortDataFile; $settings{'ACTION'} = 'SORT'; # Create an 'ACTION' map ($settings{$_} = '' ,@nosaved,'KEY1'); # and reinit vars to empty } if ($settings{'ACTION'} eq '' ) { # First launch from GUI # Place here default value when nothing is initialized $settings{'virtualIP'} = ''; $settings{'interface'} = ''; } &Header::openpage($Lang::tr{'loxilb'}, 1, ''); &Header::openbigbox('100%', 'left', '', $errormessage); if ($errormessage) { &Header::openbox('100%', 'left', $Lang::tr{'error messages'}); print "$errormessage \n"; &Header::closebox(); } # Read configuration file. &General::readhash("$loxilbsettingfile", \%settings); # Checkbox pre-selection. my $checked; if ($settings{'ENABLE_LOXILB'} eq "on") { $checked = "checked='checked'"; } my $sactive = "

$Lang::tr{'stopped'}

"; my @status = &General::system_output('/usr/local/bin/loxilbctrl', 'status'); if (grep(/is running/, @status)){ $sactive = "

$Lang::tr{'running'}

"; } &Header::openbox('100%', 'center', $Lang::tr{'loxilb status'}); print < \n"; &Header::closebox(); # my $buttontext = $Lang::tr{'add'}; if ($settings{'KEY1'} ne '') { $buttontext = $Lang::tr{'update'}; &Header::openbox('100%', 'left', $Lang::tr{'loxilb fw edit'}); } else { &Header::openbox('100%', 'left', $Lang::tr{'loxilb ip add'}); } my @INTERFACES = ("red0", "green0"); #Edited line number (KEY1) passed until cleared by 'save' or 'remove' or 'new sort order' print <

$Lang::tr{'loxilb ip virtualIP'}:
$Lang::tr{'loxilb ip interface'}:

END &Header::closebox(); &Header::openbox('100%', 'left', $Lang::tr{'loxilb ip entries'}); print < $Lang::tr{'loxilb ip virtualIP'} $Lang::tr{'loxilb ip interface'} $Lang::tr{'action'} END # # Print each line of @current list # my $key = 0; my $col=""; foreach my $line (@current) { chomp($line); # remove newline my @temp=split(/\,/,$line); $temp[1] ='' unless defined $temp[1]; # not always populated #Choose icon for checkbox my $gif = ''; my $gdesc = ''; if ($temp[0] ne '' ) { $gif = 'on.gif'; $gdesc = $Lang::tr{'click to disable'}; } else { $gif = 'off.gif'; $gdesc = $Lang::tr{'click to enable'}; } #Colorize each line if ($settings{'KEY1'} eq $key) { print ""; } elsif ($key % 2) { print ""; $col="bgcolor='$color{'color20'}'"; } else { print ""; $col="bgcolor='$color{'color22'}'"; } print <$temp[0] $temp[1] END $key++; } print ""; # If table contains entries, print 'Key to action icons' if ($key) { print < $Lang::tr{'legend'}:

$Lang::tr{'click to disable'}

$Lang::tr{'click to enable'}

$Lang::tr{'remove'} END } &Header::closebox(); &Header::closebigbox(); &Header::closepage(); ## Ouf it's the end ! # Sort the "current" array according to choices sub SortDataFile { our %entries = (); # Sort pair of record received in $a $b special vars. # When IP is specified use numeric sort else alpha. # If sortname ends with 'Rev', do reverse sort. # sub fixedleasesort { my $qs=''; # The sort field specified minus 'Rev' if (rindex ($settings{'SORT_virtualIPLIST'},'Rev') != -1) { $qs=substr ($settings{'SORT_virtualIPLIST'},0,length($settings{'SORT_virtualIPLIST'})-3); if ($qs eq 'virtualIP') { my @a = split(/\./,$entries{$a}->{$qs}); my @b = split(/\./,$entries{$b}->{$qs}); ($b[0]<=>$a[0]) || ($b[1]<=>$a[1]) || ($b[2]<=>$a[2]) || ($b[3]<=>$a[3]); } else { $entries{$b}->{$qs} cmp $entries{$a}->{$qs}; } } else { #not reverse $qs=$settings{'SORT_virtualIPLIST'}; if ($qs eq 'virtualIP') { my @a = split(/\./,$entries{$a}->{$qs}); my @b = split(/\./,$entries{$b}->{$qs}); ($a[0]<=>$b[0]) || ($a[1]<=>$b[1]) || ($a[2]<=>$b[2]) || ($a[3]<=>$b[3]); } else { $entries{$a}->{$qs} cmp $entries{$b}->{$qs}; } } } #Use an associative array (%entries) my $key = 0; foreach my $line (@current) { chomp( $line); #remove newline because can be on field 5 or 6 (addition of REMARK) my @temp = ( '','','', ''); @temp = split (',',$line); # Build a pair 'Field Name',value for each of the data dataline. # Each SORTABLE field must have is pair. # Other data fields (non sortable) can be grouped in one my @record = ('KEY',$key++,'virtualIP',$temp[0],'interface',$temp[1]); my $record = {}; # create a reference to empty hash %{$record} = @record; # populate that hash with @record $entries{$record->{KEY}} = $record; # add this to a hash of hashes } open(FILE, ">$loxilbipfile") or die "$loxilbipfile open error"; # Each field value is printed , with the newline ! Don't forget separator and order of them. foreach my $entry (sort fixedleasesort keys %entries) { print FILE "$entries{$entry}->{virtualIP},$entries{$entry}->{interface}\n"; } close(FILE); # Reload sorted @current open (FILE, "$loxilbipfile"); @current = ; close (FILE); } sub manageIP { my ($action, %settings) = @_; # Initialize variables my @loxicmd_options; my $command = 'loxicmd'; my $ip = $settings{'virtualIP'}; my $interface = $settings{'interface'}; push(@loxicmd_options, $action, "ip", $ip, $interface); #debug and display output in UI #my @output = &General::system_output($command, @loxicmd_options); #$errormessage = join('', @output); &General::system($command, @loxicmd_options); } sub SaveIP { my @save_options; my $command = 'loxicmd'; my $dir="/var/ipfire/loxilb/"; push(@save_options, "save", "--ip", "-c", $dir); &General::system_output($command, @save_options); #my @output = &General::system_output($command, @save_options); #$errormessage = join('', @output); } sub CreateIP { my (%settings) = @_; manageIP("create", %settings); &SaveIP; } sub DeleteIP { my (%settings) = @_; manageIP("delete", %settings); &SaveIP; }