#! /bin/sh
# Firewall nove generace pro Czela Debian 3.0
# Autor: Mirek Slugen
# Spoluatori: Michal Perlik, Michal Vondracek, Jan Chmelensky
# Vytvoreno: 06.11.2006
# Naposledy zmeneno: 17.09.2007
# Tento skript muzete volne sirit a upravovat.

# Protokoly, které budou zakázány
P2P_PROTOCOLS="bittorrent directconnect edonkey http-itunes soulseek"

# implementace zakazani P2P paketu
p2p_start() {
    p2p_stop
    echo -n "Rejecting P2P packets on: "
    # Zjisitime kde chceme mit zakazane P2P site
    I="0"
    NO_P2P_DEVS=""
    while [ "$I" -lt 15 ]; do
        DEV=DEV${I}_IFACE
        DEV=${!DEV}
        NO_P2P_DEV=DEV${I}_NO_P2P
        NO_P2P_DEV=${!NO_P2P_DEV}
        if [ "$NO_P2P_DEV" == "yes" ] && [ "$DEV" != "" ]; then
            # A pro dana rozhrani opravdu P2P site zakazeme
            echo -n "$DEV"
            for protocol in $P2P_PROTOCOLS; do
                $IPTABLES -I FORWARD -i "$DEV" -m layer7 --l7proto "$protocol" -j REJECT
                $IPTABLES -I FORWARD -o "$DEV" -m layer7 --l7proto "$protocol" -j REJECT
            done
        fi
        I="`expr $I + 1`"
    done
    echo "."
}

p2p_stop() {
    for I in `$IPTABLES -L FORWARD -n -v --line-numbers | grep REJECT | grep LAYER7 | awk '{print $1}' | sort -r -n`; do
        $IPTABLES -D FORWARD $I
    done
}

p2p_allow_all() {
    p2p_stop
}

p2p_deny_all() {
    for protocol in $P2P_PROTOCOLS; do
        $IPTABLES -I FORWARD -m layer7 --l7proto "$protocol" -j REJECT
    done
}

p2p_allow_ip() {
    [ "$1" == "" ] && return 0

    for I in `$IPTABLES -L FORWARD -n -v --line-numbers | grep $1 | grep LAYER7 | awk '{print $1}' | sort -r -n`; do
        $IPTABLES -D FORWARD $I
    done
    for protocol in $P2P_PROTOCOLS; do
        $IPTABLES -I FORWARD -d $1 -m layer7 --l7proto "$protocol" -j ACCEPT
        $IPTABLES -I FORWARD -s $1 -m layer7 --l7proto "$protocol" -j ACCEPT
    done
}

p2p_deny_ip() {
    [ "$1" == "" ] && return 0

    for I in `$IPTABLES -L FORWARD -n -v --line-numbers | grep $1 | grep LAYER7 | awk '{print $1}' | sort -r -n`; do
        $IPTABLES -D FORWARD $I
    done
    for protocol in $P2P_PROTOCOLS; do
        $IPTABLES -I FORWARD -d $1 -m layer7 --l7proto "$protocol" -j REJECT
        $IPTABLES -I FORWARD -s $1 -m layer7 --l7proto "$protocol" -j REJECT
    done
}
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
   <head>
      <meta http-equiv="content-type" content="text/html;charset=UTF-8">
      <meta http-equiv="generator" content="WebSVN 2.2.1" /> <!-- leave this for stats -->
      <link rel="shortcut icon" type="image/x-icon" href="./templates/BlueGrey/favicon.ico" />
      <link type="text/css" href="./templates/BlueGrey/styles.css" rel="stylesheet" media="screen">
      <!--[if lt IE 7]>
      <script type="text/javascript" src="./templates/BlueGrey/png.js"></script>
      <![endif]-->
      <script type="text/javascript" src="./templates/BlueGrey/collapse.js"></script>
      <title>
         WebSVN
            - freenet-router
            - Blame
               - Rev 2
            - /trunk/freenet-router/etc/firewall/p2p
      </title>

      <script type="text/javascript">
         function checkCB(chBox)
         {
            count = 0
            first = null
            f = chBox.form
            for (i = 0 ; i < f.elements.length ; i++)
            if (f.elements[i].type == 'checkbox' && f.elements[i].checked)
            {
               if (first == null && f.elements[i] != chBox)
                  first = f.elements[i]
               count += 1
            }
            
            if (count > 2) 
            {
               first.checked = false
               count -= 1
            }
         }
         
      </script>


</head>
<body>
	<table width="100%" border="0">
	  <tr>
		<td width="13%">&nbsp;</td>
		<td width="73%" align="center"><a href="http://www.jablonka.cz/"><img style="border: 0; width: 201px; height: 51px;" src="./templates/BlueGrey/logo.png" alt="jablonka.cz" /></a><a href="http://www.prosek.czf/"><img style="border: 0; width: 528px; height: 51px;" src="./templates/BlueGrey/squares.png" alt="prosek.czf" /></a></td>
		<td width="13%"><div style="float: right"><form action="?path=%2Ftrunk%2Ffreenet-router%2Fetc%2Ffirewall%2Fp2p&amp;repname=freenet-router&amp;rev=0" method="post" id="langform"><select name="langchoice" onchange="javascript:this.form.submit();"><option value="ca">Catal&agrave;-Valenci&agrave; - Catalan</option><option value="cs">&#268;esky - Cesky</option><option value="da">Dansk - Dansk</option><option value="nl">Dutch - Dutch</option><option value="en" selected="selected">English - English</option><option value="fi">Finnish - Finnish</option><option value="fr">Fran&ccedil;ais - Francais</option><option value="de">Deutsch - German</option><option value="he-IL">&#1506;&#1489;&#1512;&#1497;&#1514; - Hebrew</option><option value="hu">Magyar - Hungarian</option><option value="id">Bahasa Indonesia - Indonesian</option><option value="it">Italiano - Italian</option><option value="ja">&#26085;&#26412;&#35486; - Japanese</option><option value="ko">&#54620;&#44397;&#50612; - Korean</option><option value="no">Norsk - Norwegian</option><option value="pl">Polski - Polish</option><option value="pt">Portugu&ecirc;s - Portuguese</option><option value="pt-BR">Portugu&ecirc;s - Brazilian Portuguese</option><option value="ru">&#1056;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081; - Russian</option><option value="zh-CN">&#20013;&#25991; - Simplified Chinese</option><option value="sk">Sloven&#269;ina - Slovak</option><option value="sl">Sloven&#269;ina - Slovenian</option><option value="es">Espa&ntilde;ol - Spanish</option><option value="sv">Svenska - Swedish</option><option value="zh-TW">&#20013;&#25991; - Traditional Chinese</option><option value="tr">T&uuml;rk&ccedil;e - Turkish</option><option value="uz">O&euml;zbekcha - Uzbek</option></select><input type="submit" value="Go" /></form></div></td>
	  </tr>
	</table>
	<hr />
<table cellspacing="0" cellpadding="0" border="0" width="100%">
  <tr>
    <td align="left"><h1>freenet-router</h1></td>
    <td align="right"><b>Subversion Repositories:</b> <form action="form.php?" method="post" id="projectform"><select name="repname" onchange="javascript:this.form.submit();"><option value="banderdyn">banderdyn</option><option value="centos.prosek.czf">centos.prosek.czf</option><option value="crusader">crusader</option><option value="czf4bfu">czf4bfu</option><option value="czf4bfu.prosek.czf">czf4bfu.prosek.czf</option><option value="czfcentos">czfcentos</option><option value="czfgmap">czfgmap</option><option value="discover">discover</option><option value="fedora.prosek.czf">fedora.prosek.czf</option><option value="freenet-router" selected="selected">freenet-router</option><option value="ftth">ftth</option><option value="getonlineclouds">getonlineclouds</option><option value="hotsanic">hotsanic</option><option value="internet.prosek.czf">internet.prosek.czf</option><option value="is">is</option><option value="mapstats">mapstats</option><option value="meteolinger">meteolinger</option><option value="netmap">netmap</option><option value="qos">qos</option><option value="sedlo">sedlo</option><option value="sedlo.prosek.czf">sedlo.prosek.czf</option><option value="switches">switches</option><option value="vbtobb">vbtobb</option><option value="vlubnt">vlubnt</option><option value="weathermap">weathermap</option><option value="weatherstats">weatherstats</option><option value="websvn">websvn</option><option value="wifidashboard">wifidashboard</option><option value="wifimon">wifimon</option><option value="www.prosek.czf">www.prosek.czf</option><option value="xenstats">xenstats</option></select><input type="submit" value="Go" /><input type="hidden" name="selectproj" value="1" /><input type="hidden" name="op" value="form" /></form></td>
  </tr>
</table>

[<a href="listing.php?repname=freenet-router&amp;path=%2F&amp;rev=2">/</a>] [<a href="listing.php?repname=freenet-router&amp;path=%2Ftrunk%2F&amp;rev=2">trunk/</a>] [<a href="listing.php?repname=freenet-router&amp;path=%2Ftrunk%2Ffreenet-router%2F&amp;rev=2">freenet-router/</a>] [<a href="listing.php?repname=freenet-router&amp;path=%2Ftrunk%2Ffreenet-router%2Fetc%2F&amp;rev=2">etc/</a>] [<a href="listing.php?repname=freenet-router&amp;path=%2Ftrunk%2Ffreenet-router%2Fetc%2Ffirewall%2F&amp;rev=2">firewall/</a>] [<b>p2p</b>] - Blame information for rev <b>2</b>
<p>&nbsp;</p>

<table cellpadding="2" cellspacing="0" width="100%" class="blameTbl">
	<thead>
		<tr>
			<th class="HdrClmn"><b>Line No.</b></th>
			<th class="HdrClmn"><b>Rev</b></th>
			<th class="HdrClmn"><b>Author</b></th>
			<th class="HdrClmnEnd"><b>Line</b></th>
		</tr>
	</thead>
	<tbody>
	</tbody>
</table> 


<script type='text/javascript'>
/* <![CDATA[ */
var rev = new Array();
var a = document.getElementsByTagName('a');
for (var i = 0; i < a.length; i++) {
  if (a[i].className == 'blame-revision') {
    var id = a[i].id;
    addEvent(a[i], 'mouseover', function() { mouseover(this) } );
    addEvent(a[i], 'mouseout', function() { mouseout(this) } );
  }
}

function mouseover(a) {
  // Find the revision by using the link
  var m = /rev=(\d+)/.exec(a.href);
  var r = m[1];

  div = document.createElement('div');
  div.className = 'blame-popup';
  div.innerHTML = rev[r];
  a.parentNode.appendChild(div);
}

function mouseout(a) {
  var div = a.parentNode.parentNode.getElementsByTagName('div');
  for (var i = 0; i < div.length; i++) {
    if (div[i].className = 'blame-popup') {
      div[i].parentNode.removeChild(div[i]);
    }
  }
}

function addEvent(obj, type, func) {
  if (obj.addEventListener) {
    obj.addEventListener(type, func, false);
    return true;
  } else if (obj.attachEvent) {
    return obj.attachEvent('on' + type, func);
  } else {
    return false;
  }
}
/* ]]> */
</script>

      <p><center><font size="-1"><i><b>Powered by <a href="http://www.websvn.info/">WebSVN</a> 2.2.1</b></i></font></center>
   </body>
</html>