fix: Fixed the fault in determining the firewall port forwarding version (#7150)

ssongliu · web-flow · commit 7fdb0a507874 · 2024-11-22T02:16:14.000Z
diff --git a/backend/utils/firewall/client/firewalld.go b/backend/utils/firewall/client/firewalld.go
@@ -8,6 +8,7 @@ import (
 
 	"github.com/1Panel-dev/1Panel/backend/buserr"
 	"github.com/1Panel-dev/1Panel/backend/constant"
+	"github.com/1Panel-dev/1Panel/backend/global"
 	"github.com/1Panel-dev/1Panel/backend/utils/cmd"
 )
 
@@ -118,6 +119,9 @@ func (f *Firewall) ListPort() ([]FireInfo, error) {
 }
 
 func (f *Firewall) ListForward() ([]FireInfo, error) {
+	if err := f.EnableForward(); err != nil {
+		global.LOG.Errorf("init port forward failed, err: %v", err)
+	}
 	stdout, err := cmd.Exec("firewall-cmd --zone=public --list-forward-ports")
 	if err != nil {
 		return nil, err
diff --git a/backend/utils/firewall/client/iptables.go b/backend/utils/firewall/client/iptables.go
@@ -52,7 +52,7 @@ func (iptables *Iptables) Check() error {
 }
 
 func (iptables *Iptables) NatNewChain() error {
-	return iptables.runf("-t nat -N %s", NatChain)
+	return iptables.runf("-N %s", NatChain)
 }
 
 func (iptables *Iptables) NatAppendChain() error {
diff --git a/backend/utils/firewall/client/ufw.go b/backend/utils/firewall/client/ufw.go
@@ -6,6 +6,7 @@ import (
 
 	"github.com/1Panel-dev/1Panel/backend/buserr"
 	"github.com/1Panel-dev/1Panel/backend/constant"
+	"github.com/1Panel-dev/1Panel/backend/global"
 	"github.com/1Panel-dev/1Panel/backend/utils/cmd"
 )
 
@@ -108,6 +109,12 @@ func (f *Ufw) ListForward() ([]FireInfo, error) {
 	if err != nil {
 		return nil, err
 	}
+	panelChian, _ := cmd.Execf("%s iptables -t nat -L -n | grep 'Chain 1PANEL'", iptables.CmdStr)
+	if len(strings.ReplaceAll(panelChian, "\n", "")) == 0 {
+		if err := f.EnableForward(); err != nil {
+			global.LOG.Errorf("init port forward failed, err: %v", err)
+		}
+	}
 	rules, err := iptables.NatList()
 	if err != nil {
 		return nil, err

Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,7 @@ import (`
`8`	`8`
`9`	`9`	`"github.com/1Panel-dev/1Panel/backend/buserr"`
`10`	`10`	`"github.com/1Panel-dev/1Panel/backend/constant"`
	`11`	`+ "github.com/1Panel-dev/1Panel/backend/global"`
`11`	`12`	`"github.com/1Panel-dev/1Panel/backend/utils/cmd"`
`12`	`13`	`)`
`13`	`14`
`@@ -118,6 +119,9 @@ func (f *Firewall) ListPort() ([]FireInfo, error) {`
`118`	`119`	`}`
`119`	`120`
`120`	`121`	`func (f *Firewall) ListForward() ([]FireInfo, error) {`
	`122`	`+ if err := f.EnableForward(); err != nil {`
	`123`	`+ global.LOG.Errorf("init port forward failed, err: %v", err)`
	`124`	`+ }`
`121`	`125`	`stdout, err := cmd.Exec("firewall-cmd --zone=public --list-forward-ports")`
`122`	`126`	`if err != nil {`
`123`	`127`	`return nil, err`
Original file line number	Diff line number	Diff line change
`@@ -52,7 +52,7 @@ func (iptables *Iptables) Check() error {`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`func (iptables *Iptables) NatNewChain() error {`
`55`		`- return iptables.runf("-t nat -N %s", NatChain)`
	`55`	`+ return iptables.runf("-N %s", NatChain)`
`56`	`56`	`}`
`57`	`57`
`58`	`58`	`func (iptables *Iptables) NatAppendChain() error {`