diff options
Diffstat (limited to 'cf-ipset.sh')
| -rwxr-xr-x | cf-ipset.sh | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/cf-ipset.sh b/cf-ipset.sh new file mode 100755 index 0000000..29bfa66 --- /dev/null +++ b/cf-ipset.sh @@ -0,0 +1,32 @@ +#!/bin/bash + +TEMP=$(mktemp) +IPSET_NAME="$1" + +ipset_exists() { + ipset -L "$1" >/dev/null 2>/dev/null +} + +die() { + echo "error: $@" + [ -f "$TEMP" ] && rm "$TEMP" + exit 1 +} + +[ -z "$IPSET_NAME" ] && { + echo "usage: $0 IPSET_NAME" + exit +} + +if ! ipset_exists "$IPSET_NAME"; then + echo "warn: set $IPSET_NAME doesn't exists, creating it for you..." + ipset create $IPSET_NAME hash:net || die "failed to create ipset" +fi + +list=$(curl -s "https://www.cloudflare.com/ips-v4") +[ -z "$list" ] && die "failed to fetch cf networks" + +ipset flush $IPSET_NAME || die "failed to flush $IPSET_NAME" +for net in $list; do + ipset add $IPSET_NAME $net || echo "error: failed to add $net to $IPSET_NAME" +done |