ChipMaster
/
Poor-Mans-IDS
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
The Poor Man's (or Woman's) Intrusion Detection System
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
16 Commits
1 Branch
133 KiB
 
 
 
 
Tree: d12a3e9f4d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd12a3e9f4d'
${ noResults }
Poor-Mans-IDS/trafficmon/init

121 lines
2.0 KiB
Raw Blame History 

  1. #!/bin/sh

  2. ### BEGIN INIT INFO

  3. # Provides:          trafficmon

  4. # Required-Start:    $local_fs

  5. # Required-Stop:     $local_fs

  6. # X-Start-Before:    $syslog

  7. # X-Stop-After:      $syslog

  8. # Default-Start:     2 3 4 5

  9. # Default-Stop:      0 1 6

  10. # Short-Description: Monitor and record net traffic

  11. # Description:       This service listens to a pipe for "iptables LOG" and

  12. #                    dnsmasq DNS query messages. It then records information

  13. #                    about internet access into a MySQL DB. Typically these

  14. #                    messages are provided by syslogd.

  15. #

  16. #                    NOTE: if this is started after syslogd the pipe might not

  17. #                    be available and syslogd will simply not try to write to

  18. #                    until a restart.

  19. ### END INIT INFO

  20. 

  21. NAME="trafficmon"

  22. DAEMON="/usr/sbin/$NAME"

  23. RUN=/run

  24. CONF=""

  25. SOCK=""

  26. 

  27. # Pull in config

  28. if [ -r "/etc/default/$NAME" ]; then

  29.   . /etc/default/$NAME

  30. fi

  31. 

  32. 

  33. 

  34. ### Setup control variables ###

  35. 

  36. # This is where we put PID files and the pipe

  37. RUN="$RUN/poorman-ids"

  38. PID="$RUN/$NAME.pid"

  39. mkdir -p "$RUN"

  40. [ -n "$SOCK" ] || SOCK="$RUN/$NAME.sock"

  41. 

  42. 

  43. 

  44. ### ACTIONS ###

  45. 

  46. # The main service command

  47. CTRL() {

  48.   start-stop-daemon --pidfile "$PID" --exec "$DAEMON" "$@"

  49. }

  50. 

  51. 

  52. 

  53. do_start() {

  54.   echo -n "Starting Traffic Monitor: "

  55.   if [ -z "$CONF" ]; then

  56.     echo "NOT CONFIGURED"

  57.     return 0

  58.   fi

  59.   if CTRL --start --oknodo -- -c "$CONF" -b -i "$PID" -p "$SOCK"; then

  60.     echo "OK"

  61.     return 0 #JIC

  62.   else

  63.     echo "FAIL"

  64.     return 1

  65.   fi

  66. }

  67. 

  68. 

  69. 

  70. do_stop() {

  71.   echo -n "Stoping Traffic Monitor: "

  72.   if CTRL --stop --remove-pidfile; then

  73.     echo "OK"

  74.     return 0 #JIC

  75.   else

  76.     echo "FAIL"

  77.     return 1

  78.   fi

  79. }

  80. 

  81. 

  82. 

  83. do_status() {

  84.   echo -n "Traffic Monitor is: "

  85.   if CTRL --status; then

  86.     echo "Up"

  87.     return 0 #JIC

  88.   else

  89.     echo "Down"

  90.     return 1

  91.   fi

  92. }

  93. 

  94. 

  95. 

  96. ### Main()

  97. 

  98. case "$1" in

  99.   start)

  100.     do_start

  101.     ;;

  102. 

  103.   stop)

  104.     do_stop

  105.     ;;

  106. 

  107.   restart)

  108.     do_status && do_stop

  109.     do_start

  110.     ;;

  111. 

  112.   status)

  113.     do_status

  114.     ;;

  115. 

  116.   *)

  117.     echo "$0 {start | stop | restart | status}"

  118.     ;;

  119. 

  120. esac