From: Stefan Schantl <stefan.schantl@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH 4/6] xt_geoip_update: Adjust script to download and use the GeoLite2 database
Date: Thu, 10 Jan 2019 13:00:15 +0100 [thread overview]
Message-ID: <20190110120017.6595-4-stefan.schantl@ipfire.org> (raw)
In-Reply-To: <20190110120017.6595-1-stefan.schantl@ipfire.org>
[-- Attachment #1: Type: text/plain, Size: 2967 bytes --]
Fixes #11961.
Signed-off-by: Stefan Schantl <stefan.schantl(a)ipfire.org>
---
src/scripts/xt_geoip_update | 63 ++++++++++++++++---------------------
1 file changed, 27 insertions(+), 36 deletions(-)
diff --git a/src/scripts/xt_geoip_update b/src/scripts/xt_geoip_update
index 0aea4d03e..73484c7a0 100644
--- a/src/scripts/xt_geoip_update
+++ b/src/scripts/xt_geoip_update
@@ -24,13 +24,10 @@ TMP_FILE=$(mktemp -p $TMP_PATH)
SCRIPT_PATH=/usr/local/bin
DEST_PATH=/usr/share/xt_geoip
+DB_PATH=/var/lib/GeoIP
-DL_URL=https://geolite.maxmind.com/download/geoip/database
-DL_FILE=GeoIPCountryCSV.zip
-
-CSV_FILE=GeoIPCountryWhois.csv
-
-ARCH=LE
+DL_URL=http://geolite.maxmind.com/download/geoip/database/
+DL_FILE=GeoLite2-Country-CSV.zip
eval $(/usr/local/bin/readhash /var/ipfire/proxy/settings)
@@ -57,42 +54,41 @@ function download() {
# Get the latest GeoIP database from server.
wget $DL_URL/$DL_FILE $PROXYSETTINGS -O $TMP_FILE
- # Extract files.
+ # Extract files to database path.
unzip $TMP_FILE -d $TMP_PATH
return 0
}
-function build() {
- echo "Convert database..."
+function install() {
+ echo "Install CSV database..."
- # Check if the csv file exists.
- if [ ! -e $TMP_PATH/$CSV_FILE ]; then
- echo "$TMP_PATH/$CSV_FILE not found. Exiting."
- return 1
+ # Check if the database dir exists.
+ if [ ! -e "$DB_PATH" ]; then
+ mkdir -p $DB_PATH &>/dev/null
fi
- # Run script to convert the CSV file into several xtables
- # compatible binary files.
- if ! $SCRIPT_PATH/xt_geoip_build $TMP_PATH/$CSV_FILE -D $TMP_PATH; then
- echo "Could not convert ruleset. Aborting." >&2
+ # Check if the directory for binary databases exists.
+ if [ ! -e "$DEST_PATH" ]; then
+ mkdir -p $DEST_PATH &>/dev/null
+ fi
+
+ # Install CSV databases.
+ if ! cp -af $TMP_PATH/*/* $DB_PATH &>/dev/null; then
+ echo "Could not copy files. Aborting." >&2
return 1
fi
return 0
}
-function install() {
- echo "Install databases..."
-
- # Check if our destination exist.
- if [ ! -e "$DEST_PATH" ]; then
- mkdir -p $DEST_PATH &>/dev/null
- fi
+function build() {
+ echo "Convert database..."
- # Install databases.
- if ! cp -af $TMP_PATH/$ARCH $DEST_PATH &>/dev/null; then
- echo "Could not copy files. Aborting." >&2
+ # Run script to convert the CSV file into several xtables
+ # compatible binary files.
+ if ! $SCRIPT_PATH/xt_geoip_build -S $DB_PATH -D $DEST_PATH; then
+ echo "Could not convert ruleset. Aborting." >&2
return 1
fi
@@ -113,23 +109,18 @@ function main() {
# Download ruleset.
download || exit $?
- # Convert the ruleset.
- if ! build; then
- # Do cleanup.
- cleanup || exit $?
- exit 1
- fi
-
- # Install the converted ruleset.
if ! install; then
# Do cleanup.
cleanup || exit $?
exit 1
fi
- # Finaly remove temporary files.
+ # Remove temporary files.
cleanup || exit $?
+ # Convert the ruleset.
+ build || exit $?
+
return 0
}
--
2.19.1
next prev parent reply other threads:[~2019-01-10 12:00 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-01-10 12:00 [PATCH 1/6] perl-Net-CIDR-Lite: New package Stefan Schantl
2019-01-10 12:00 ` [PATCH 2/6] xtables-addons: Update to 3.2 Stefan Schantl
2019-01-10 12:00 ` [PATCH 3/6] xtables-addons: Use shipped xt_geoip_build Stefan Schantl
2019-01-10 12:00 ` Stefan Schantl [this message]
2019-01-10 12:00 ` [PATCH 5/6] GeoIP: Drop legacy GeoIP perl module Stefan Schantl
2019-01-10 12:00 ` [PATCH 6/6] geoip-functions.pl: Re-write code to lookup the iso country code of a given IP-address Stefan Schantl
2019-01-10 15:01 ` Michael Tremer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190110120017.6595-4-stefan.schantl@ipfire.org \
--to=stefan.schantl@ipfire.org \
--cc=development@lists.ipfire.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox