#!/bin/sh

#删除oray_vpn_vnc表
logger -t "【蒲公英组网】" "删除oray_vpn_vnc表"
iptables -w -t filter -F oray_vpn_vnc
while true;
do
	iptables -w -t filter -D INPUT -j oray_vpn_vnc 2>/dev/null
	[ $? -ne 0 ] && break
done

while true;
do
	iptables -w -t filter -D FORWARD -j oray_vpn_vnc 2>/dev/null
	[ $? -ne 0 ] && break
done

while true;
do
	iptables -w -t filter -D OUTPUT -j oray_vpn_vnc 2>/dev/null
	[ $? -ne 0 ] && break
done
iptables -w -t filter -X oray_vpn_vnc

#建立oray_vpn_vnc表
iptables -w -t filter -N oray_vpn_vnc
iptables -w -t filter -I oray_vpn_vnc -i oray_vnc -o br0 -j ACCEPT
iptables -w -t filter -I oray_vpn_vnc -o oray_vnc -i br0 -j ACCEPT
iptables -w -t filter -I INPUT 1 -j oray_vpn_vnc
iptables -w -t filter -I OUTPUT 1 -j oray_vpn_vnc
iptables -w -t filter -I FORWARD 1 -j oray_vpn_vnc
iptables -w -t filter -I oray_vpn_vnc -i oray_vnc -j ACCEPT
# 检查防火墙规则是否添加成功
if [ $? -eq 0 ]; then
  # 如果命令成功执行，则输出日志
  logger -t "【蒲公英组网】" "已添加虚拟网卡oray_vnc的防火墙规则"
else
  # 如果命令执行失败，则输出错误日志
  logger -t "【蒲公英组网】" "添加虚拟网卡oray_vnc的防火墙规则失败"
fi