From 584417a254b87cb104d1445a3246ee247cf57ffa Mon Sep 17 00:00:00 2001
From: loyess <luoyshappy@gmail.com>
Date: Sun, 26 Feb 2023 21:05:34 +0800
Subject: [PATCH] Open ssh port if disabled

---
 utils/firewalls.sh | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/utils/firewalls.sh b/utils/firewalls.sh
index 80809aa..39591a9 100644
--- a/utils/firewalls.sh
+++ b/utils/firewalls.sh
@@ -121,8 +121,28 @@ firewall_status(){
     fi
 }
 
+add_ssh_port(){
+    if [ "${FIREWALL_MANAGE_TOOL}" = 'firewall-cmd' ]; then
+        if firewall-cmd --list-ports --permanent 2>/dev/null | grep -qw "22/tcp"; then
+            return
+        fi
+        add_firewall_rule "22" "tcp"
+    elif [ "${FIREWALL_MANAGE_TOOL}" = 'ufw' ]; then
+        if ufw status 2>/dev/null | grep -qwE "OpenSSH|22/tcp"; then
+            return
+        fi
+        add_firewall_rule "22" "tcp"
+    elif [ "${FIREWALL_MANAGE_TOOL}" = 'iptables' ]; then
+        if iptables -L INPUT -n --line-numbers 2>/dev/null | grep -qwE "tcp dpt:ssh|tcp dpt:22"; then
+            return
+        fi
+        add_firewall_rule "22" "tcp"
+    fi
+}
+
 config_firewall_logic(){
     firewall_status
+    add_ssh_port
     add_firewall_rule "${firewallNeedOpenPort}" "tcp"
     add_firewall_rule "${firewallNeedOpenPort}" "udp"
     view_firewll_rule "${firewallNeedOpenPort}"