drygdryg/zapret
1
0
Fork 0
mirror of https://github.com/bol-van/zapret.git synced 2025-04-19 21:42:59 +03:00
Code Issues Packages Projects Releases Wiki Activity

custom-desync-keepalive add ipset templates

Browse Source
This commit is contained in:
bol-van 2020-02-04 15:19:48 +03:00
parent 893c4d9fc4
commit f360a8be3d
2 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
init.d/openwrt/custom-desync-keepalive
View File

@ -8,6 +8,7 @@
# NFQWS_OPT_DESYNC=your choice of nfqws desync options # NFQWS_OPT_DESYNC=your choice of nfqws desync options
# GETLIST=your choice of script in ipset/get_*.sh, or comment if list downloading is not needed # GETLIST=your choice of script in ipset/get_*.sh, or comment if list downloading is not needed
# if hostlist is needed then uncomment run_daemon with --hostlist and comment run_daemon without --hostlist # if hostlist is needed then uncomment run_daemon with --hostlist and comment run_daemon without --hostlist
# if ipset filter is needed then uncomment lines starting with "ipset_zapret" and "ipset_zapret6"
# restart zapret # restart zapret
zapret_custom_daemons() zapret_custom_daemons()
@ -19,6 +20,9 @@ zapret_custom_firewall()
{ {
local desync_http="--dport 80 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK" local desync_http="--dport 80 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK"
local desync_https="--dport 443 -m connbytes --connbytes-dir=original --connbytes-mode=packets --connbytes 2:4 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK" local desync_https="--dport 443 -m connbytes --connbytes-dir=original --connbytes-mode=packets --connbytes 2:4 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK"
fw_nfqws_post "$desync_http" "$desync_http" $QNUM local ipset_zapret ipset_zapret6
fw_nfqws_post "$desync_https" "$desync_https" $QNUM #ipset_zapret="-m set --match-set zapret dst"
#ipset_zapret6="-m set --match-set zapret6 dst"
fw_nfqws_post "$desync_http $ipset_zapret" "$desync_http $ipset_zapret6" $QNUM
fw_nfqws_post "$desync_https $ipset_zapret" "$desync_https $ipset_zapret6" $QNUM
} }

10
init.d/sysv/custom-desync-keepalive
View File

@ -7,7 +7,8 @@
# MODE=custom # MODE=custom
# NFQWS_OPT_DESYNC=your choice of nfqws desync options # NFQWS_OPT_DESYNC=your choice of nfqws desync options
# GETLIST=your choice of script in ipset/get_*.sh, or comment if list downloading is not needed # GETLIST=your choice of script in ipset/get_*.sh, or comment if list downloading is not needed
# if hostlist is needed then uncomment do_nfqws with --hostlist and comment do_nfqws without --hostlist # if hostlist is needed then uncomment run_daemon with --hostlist and comment run_daemon without --hostlist
# if ipset filter is needed then uncomment lines starting with "ipset_zapret" and "ipset_zapret6"
# restart zapret # restart zapret
zapret_custom_daemons() zapret_custom_daemons()
@ -19,6 +20,9 @@ zapret_custom_firewall()
{ {
local desync_http="--dport 80 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK" local desync_http="--dport 80 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK"
local desync_https="--dport 443 -m connbytes --connbytes-dir=original --connbytes-mode=packets --connbytes 2:4 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK" local desync_https="--dport 443 -m connbytes --connbytes-dir=original --connbytes-mode=packets --connbytes 2:4 -m mark ! --mark $DESYNC_MARK/$DESYNC_MARK"
fw_nfqws_post $1 "$desync_http" "$desync_http" $QNUM local ipset_zapret ipset_zapret6
fw_nfqws_post $1 "$desync_https" "$desync_https" $QNUM #ipset_zapret="-m set --match-set zapret dst"
#ipset_zapret6="-m set --match-set zapret6 dst"
fw_nfqws_post $1 "$desync_http $ipset_zapret" "$desync_http $ipset_zapret6" $QNUM
fw_nfqws_post $1 "$desync_https $ipset_zapret" "$desync_https $ipset_zapret6" $QNUM
} }