| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | #!/bin/bash
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | red='\033[0;31m' | 
					
						
							|  |  |  | green='\033[0;32m' | 
					
						
							| 
									
										
										
										
											2024-12-20 18:04:34 +00:00
										 |  |  | blue='\033[0;34m' | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | yellow='\033[0;33m' | 
					
						
							|  |  |  | plain='\033[0m' | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | #Add some basic function here | 
					
						
							|  |  |  | function LOGD() { | 
					
						
							|  |  |  |     echo -e "${yellow}[DEG] $* ${plain}" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | function LOGE() { | 
					
						
							|  |  |  |     echo -e "${red}[ERR] $* ${plain}" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | function LOGI() { | 
					
						
							|  |  |  |     echo -e "${green}[INF] $* ${plain}" | 
					
						
							|  |  |  | } | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | # check root | 
					
						
							|  |  |  | [[ $EUID -ne 0 ]] && LOGE "ERROR: You must be root to run this script! \n" && exit 1 | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  | # Check OS and set release variable | 
					
						
							| 
									
										
										
										
											2023-03-11 15:05:35 +00:00
										 |  |  | if [[ -f /etc/os-release ]]; then | 
					
						
							|  |  |  |     source /etc/os-release | 
					
						
							|  |  |  |     release=$ID | 
					
						
							|  |  |  | elif [[ -f /usr/lib/os-release ]]; then | 
					
						
							|  |  |  |     source /usr/lib/os-release | 
					
						
							|  |  |  |     release=$ID | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | else | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  |     echo "Failed to check the system OS, please contact the author!" >&2 | 
					
						
							|  |  |  |     exit 1 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | fi | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  | echo "The OS release is: $release" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | os_version="" | 
					
						
							| 
									
										
										
										
											2024-09-24 14:50:00 +00:00
										 |  |  | os_version=$(grep "^VERSION_ID" /etc/os-release | cut -d '=' -f2 | tr -d '"' | tr -d '.') | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  | # Declare Variables | 
					
						
							|  |  |  | log_folder="${XUI_LOG_FOLDER:=/var/log}" | 
					
						
							|  |  |  | iplimit_log_path="${log_folder}/3xipl.log" | 
					
						
							|  |  |  | iplimit_banned_log_path="${log_folder}/3xipl-banned.log" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | confirm() { | 
					
						
							|  |  |  |     if [[ $# > 1 ]]; then | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         echo && read -rp "$1 [Default $2]: " temp | 
					
						
							| 
									
										
										
										
											2023-04-29 21:27:15 +00:00
										 |  |  |         if [[ "${temp}" == "" ]]; then | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |             temp=$2 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "$1 [y/n]: " temp | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-04-29 21:27:15 +00:00
										 |  |  |     if [[ "${temp}" == "y" || "${temp}" == "Y" ]]; then | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         return 0 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         return 1 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | confirm_restart() { | 
					
						
							|  |  |  |     confirm "Restart the panel, Attention: Restarting the panel will also restart xray" "y" | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         restart | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | before_show_menu() { | 
					
						
							| 
									
										
										
										
											2025-05-16 18:23:57 +00:00
										 |  |  |     echo && echo -n -e "${yellow}Press enter to return to the main menu: ${plain}" && read -r temp | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     show_menu | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | install() { | 
					
						
							| 
									
										
										
										
											2023-03-11 15:05:35 +00:00
										 |  |  |     bash <(curl -Ls https://raw.githubusercontent.com/MHSanaei/3x-ui/main/install.sh) | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             start | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             start 0 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | update() { | 
					
						
							| 
									
										
										
										
											2024-01-01 20:09:21 +00:00
										 |  |  |     confirm "This function will forcefully reinstall the latest version, and the data will not be lost. Do you want to continue?" "y" | 
					
						
							| 
									
										
										
										
											2023-04-24 13:25:29 +00:00
										 |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         LOGE "Cancelled" | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             before_show_menu | 
					
						
							| 
									
										
										
										
											2023-04-21 15:30:14 +00:00
										 |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-04-24 13:25:29 +00:00
										 |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  |     bash <(curl -Ls https://raw.githubusercontent.com/MHSanaei/3x-ui/main/install.sh) | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         LOGI "Update is complete, Panel has automatically restarted " | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         before_show_menu | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  | update_menu() { | 
					
						
							|  |  |  |     echo -e "${yellow}Updating Menu${plain}" | 
					
						
							|  |  |  |     confirm "This function will update the menu to the latest changes." "y" | 
					
						
							|  |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         LOGE "Cancelled" | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             before_show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-02-22 10:53:36 +00:00
										 |  |  |     wget -O /usr/bin/x-ui https://raw.githubusercontent.com/MHSanaei/3x-ui/main/x-ui.sh | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |     chmod +x /usr/local/x-ui/x-ui.sh | 
					
						
							|  |  |  |     chmod +x /usr/bin/x-ui | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         echo -e "${green}Update successful. The panel has automatically restarted.${plain}" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         exit 0 | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |     else | 
					
						
							|  |  |  |         echo -e "${red}Failed to update the menu.${plain}" | 
					
						
							|  |  |  |         return 1 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-31 00:18:37 +00:00
										 |  |  | legacy_version() { | 
					
						
							| 
									
										
										
										
											2025-05-16 18:23:57 +00:00
										 |  |  |     echo -n "Enter the panel version (like 2.4.0):" | 
					
						
							|  |  |  |     read -r tag_version | 
					
						
							| 
									
										
										
										
											2023-12-23 14:28:11 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-04 12:31:15 +00:00
										 |  |  |     if [ -z "$tag_version" ]; then | 
					
						
							| 
									
										
										
										
											2023-12-23 14:28:11 +00:00
										 |  |  |         echo "Panel version cannot be empty. Exiting." | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         exit 1 | 
					
						
							| 
									
										
										
										
											2023-12-23 14:28:11 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  |     # Use the entered panel version in the download link | 
					
						
							| 
									
										
										
										
											2024-10-31 00:18:37 +00:00
										 |  |  |     install_command="bash <(curl -Ls "https://raw.githubusercontent.com/mhsanaei/3x-ui/v$tag_version/install.sh") v$tag_version" | 
					
						
							| 
									
										
										
										
											2023-12-23 14:28:11 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-04 12:31:15 +00:00
										 |  |  |     echo "Downloading and installing panel version $tag_version..." | 
					
						
							| 
									
										
										
										
											2023-12-23 14:28:11 +00:00
										 |  |  |     eval $install_command | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-02-17 16:23:02 +00:00
										 |  |  | # Function to handle the deletion of the script file | 
					
						
							|  |  |  | delete_script() { | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |     rm "$0" # Remove the script file itself | 
					
						
							| 
									
										
										
										
											2024-02-17 16:23:02 +00:00
										 |  |  |     exit 1 | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | uninstall() { | 
					
						
							|  |  |  |     confirm "Are you sure you want to uninstall the panel? xray will also uninstalled!" "n" | 
					
						
							|  |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         rc-service x-ui stop | 
					
						
							|  |  |  |         rc-update del x-ui | 
					
						
							|  |  |  |         rm /etc/init.d/x-ui -f | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         systemctl stop x-ui | 
					
						
							|  |  |  |         systemctl disable x-ui | 
					
						
							|  |  |  |         rm /etc/systemd/system/x-ui.service -f | 
					
						
							|  |  |  |         systemctl daemon-reload | 
					
						
							|  |  |  |         systemctl reset-failed | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     rm /etc/x-ui/ -rf | 
					
						
							|  |  |  |     rm /usr/local/x-ui/ -rf | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo "" | 
					
						
							| 
									
										
										
										
											2024-02-17 16:23:02 +00:00
										 |  |  |     echo -e "Uninstalled Successfully.\n" | 
					
						
							|  |  |  |     echo "If you need to install this panel again, you can use below command:" | 
					
						
							|  |  |  |     echo -e "${green}bash <(curl -Ls https://raw.githubusercontent.com/mhsanaei/3x-ui/master/install.sh)${plain}" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     echo "" | 
					
						
							| 
									
										
										
										
											2024-02-17 16:23:02 +00:00
										 |  |  |     # Trap the SIGTERM signal | 
					
						
							|  |  |  |     trap delete_script SIGTERM | 
					
						
							|  |  |  |     delete_script | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | reset_user() { | 
					
						
							| 
									
										
										
										
											2023-04-21 15:30:14 +00:00
										 |  |  |     confirm "Are you sure to reset the username and password of the panel?" "n" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2025-07-02 09:25:25 +00:00
										 |  |  |      | 
					
						
							| 
									
										
										
										
											2023-04-21 15:30:14 +00:00
										 |  |  |     read -rp "Please set the login username [default is a random username]: " config_account | 
					
						
							|  |  |  |     [[ -z $config_account ]] && config_account=$(date +%s%N | md5sum | cut -c 1-8) | 
					
						
							|  |  |  |     read -rp "Please set the login password [default is a random password]: " config_password | 
					
						
							|  |  |  |     [[ -z $config_password ]] && config_password=$(date +%s%N | md5sum | cut -c 1-8) | 
					
						
							| 
									
										
										
										
											2025-07-02 09:25:25 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     read -rp "Do you want to disable currently configured two-factor authentication? (y/n): " twoFactorConfirm | 
					
						
							|  |  |  |     if [[ $twoFactorConfirm != "y" && $twoFactorConfirm != "Y" ]]; then | 
					
						
							|  |  |  |         /usr/local/x-ui/x-ui setting -username ${config_account} -password ${config_password} -resetTwoFactor false >/dev/null 2>&1 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         /usr/local/x-ui/x-ui setting -username ${config_account} -password ${config_password} -resetTwoFactor true >/dev/null 2>&1 | 
					
						
							|  |  |  |         echo -e "Two factor authentication has been disabled." | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  |      | 
					
						
							| 
									
										
										
										
											2023-04-21 15:30:14 +00:00
										 |  |  |     echo -e "Panel login username has been reset to: ${green} ${config_account} ${plain}" | 
					
						
							|  |  |  |     echo -e "Panel login password has been reset to: ${green} ${config_password} ${plain}" | 
					
						
							|  |  |  |     echo -e "${green} Please use the new login username and password to access the X-UI panel. Also remember them! ${plain}" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     confirm_restart | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  | gen_random_string() { | 
					
						
							|  |  |  |     local length="$1" | 
					
						
							| 
									
										
										
										
											2024-07-27 12:56:37 +00:00
										 |  |  |     local random_string=$(LC_ALL=C tr -dc 'a-zA-Z0-9' </dev/urandom | fold -w "$length" | head -n 1) | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  |     echo "$random_string" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | reset_webbasepath() { | 
					
						
							|  |  |  |     echo -e "${yellow}Resetting Web Base Path${plain}" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-04 09:17:59 +00:00
										 |  |  |     read -rp "Are you sure you want to reset the web base path? (y/n): " confirm | 
					
						
							|  |  |  |     if [[ $confirm != "y" && $confirm != "Y" ]]; then | 
					
						
							|  |  |  |         echo -e "${yellow}Operation canceled.${plain}" | 
					
						
							|  |  |  |         return | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-04 09:17:59 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-07-22 10:53:12 +00:00
										 |  |  |     config_webBasePath=$(gen_random_string 18) | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  |     # Apply the new web base path setting | 
					
						
							|  |  |  |     /usr/local/x-ui/x-ui setting -webBasePath "${config_webBasePath}" >/dev/null 2>&1 | 
					
						
							| 
									
										
										
										
											2025-03-04 08:50:24 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |     echo -e "Web base path has been reset to: ${green}${config_webBasePath}${plain}" | 
					
						
							|  |  |  |     echo -e "${green}Please use the new web base path to access the panel.${plain}" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:38:23 +00:00
										 |  |  |     restart | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | reset_config() { | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     confirm "Are you sure you want to reset all panel settings, Account data will not be lost, Username and password will not change" "n" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  |     /usr/local/x-ui/x-ui setting -reset | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |     echo -e "All panel settings have been reset to default." | 
					
						
							|  |  |  |     restart | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | check_config() { | 
					
						
							| 
									
										
										
										
											2024-10-29 14:07:56 +00:00
										 |  |  |     local info=$(/usr/local/x-ui/x-ui setting -show true) | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? != 0 ]]; then | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGE "get current settings error, please check logs" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         show_menu | 
					
						
							| 
									
										
										
										
											2024-10-29 14:07:56 +00:00
										 |  |  |         return | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  |     LOGI "${info}" | 
					
						
							| 
									
										
										
										
											2024-10-29 14:07:56 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     local existing_webBasePath=$(echo "$info" | grep -Eo 'webBasePath: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_port=$(echo "$info" | grep -Eo 'port: .+' | awk '{print $2}') | 
					
						
							| 
									
										
										
										
											2024-11-12 11:25:16 +00:00
										 |  |  |     local existing_cert=$(/usr/local/x-ui/x-ui setting -getCert true | grep -Eo 'cert: .+' | awk '{print $2}') | 
					
						
							| 
									
										
										
										
											2025-07-06 09:22:36 +00:00
										 |  |  |     local server_ip=$(curl -s --max-time 3 https://api.ipify.org) | 
					
						
							|  |  |  |     if [ -z "$server_ip" ]; then | 
					
						
							|  |  |  |         server_ip=$(curl -s --max-time 3 https://4.ident.me) | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-29 14:07:56 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-11-12 11:25:16 +00:00
										 |  |  |     if [[ -n "$existing_cert" ]]; then | 
					
						
							|  |  |  |         local domain=$(basename "$(dirname "$existing_cert")") | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         if [[ "$domain" =~ ^[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$ ]]; then | 
					
						
							|  |  |  |             echo -e "${green}Access URL: https://${domain}:${existing_port}${existing_webBasePath}${plain}" | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo -e "${green}Access URL: https://${server_ip}:${existing_port}${existing_webBasePath}${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${green}Access URL: http://${server_ip}:${existing_port}${existing_webBasePath}${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | set_port() { | 
					
						
							| 
									
										
										
										
											2025-05-16 18:23:57 +00:00
										 |  |  |     echo -n "Enter port number[1-65535]: " | 
					
						
							|  |  |  |     read -r port | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ -z "${port}" ]]; then | 
					
						
							|  |  |  |         LOGD "Cancelled" | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         /usr/local/x-ui/x-ui setting -port ${port} | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         echo -e "The port is set, Please restart the panel now, and use the new port ${green}${port}${plain} to access web panel" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         confirm_restart | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | start() { | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         echo "" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGI "Panel is running, No need to start again, If you need to restart, please select restart" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service x-ui start | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl start x-ui | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         sleep 2 | 
					
						
							|  |  |  |         check_status | 
					
						
							|  |  |  |         if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |             LOGI "x-ui Started Successfully" | 
					
						
							|  |  |  |         else | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |             LOGE "panel Failed to start, Probably because it takes longer than two seconds to start, Please check the log information later" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         fi | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | stop() { | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     if [[ $? == 1 ]]; then | 
					
						
							|  |  |  |         echo "" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGI "Panel stopped, No need to stop again!" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service x-ui stop | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl stop x-ui | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         sleep 2 | 
					
						
							|  |  |  |         check_status | 
					
						
							|  |  |  |         if [[ $? == 1 ]]; then | 
					
						
							|  |  |  |             LOGI "x-ui and xray stopped successfully" | 
					
						
							|  |  |  |         else | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |             LOGE "Panel stop failed, Probably because the stop time exceeds two seconds, Please check the log information later" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         fi | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | restart() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         rc-service x-ui restart | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         systemctl restart x-ui | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     sleep 2 | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         LOGI "x-ui and xray Restarted successfully" | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGE "Panel restart failed, Probably because it takes longer than two seconds to start, Please check the log information later" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | status() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         rc-service x-ui status | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         systemctl status x-ui -l | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | enable() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         rc-update add x-ui | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         systemctl enable x-ui | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         LOGI "x-ui Set to boot automatically on startup successfully" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         LOGE "x-ui Failed to set Autostart" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | disable() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         rc-update del x-ui | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         systemctl disable x-ui | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         LOGI "x-ui Autostart Cancelled successfully" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         LOGE "x-ui Failed to cancel autostart" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | show_log() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}\t1.${plain} Debug Log" | 
					
						
							|  |  |  |         echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							|  |  |  |         read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2024-10-15 19:33:41 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         case "$choice" in | 
					
						
							|  |  |  |         0) | 
					
						
							|  |  |  |             show_menu | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         1) | 
					
						
							|  |  |  |             grep -F 'x-ui[' /var/log/messages | 
					
						
							|  |  |  |             if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |                 before_show_menu | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         *) | 
					
						
							|  |  |  |             echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |             show_log | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         esac | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${green}\t1.${plain} Debug Log" | 
					
						
							|  |  |  |         echo -e "${green}\t2.${plain} Clear All logs" | 
					
						
							|  |  |  |         echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							|  |  |  |         read -rp "Choose an option: " choice | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         case "$choice" in | 
					
						
							|  |  |  |         0) | 
					
						
							|  |  |  |             show_menu | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         1) | 
					
						
							|  |  |  |             journalctl -u x-ui -e --no-pager -f -p debug | 
					
						
							|  |  |  |             if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |                 before_show_menu | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         2) | 
					
						
							|  |  |  |             sudo journalctl --rotate | 
					
						
							|  |  |  |             sudo journalctl --vacuum-time=1s | 
					
						
							|  |  |  |             echo "All Logs cleared." | 
					
						
							|  |  |  |             restart | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         *) | 
					
						
							|  |  |  |             echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |             show_log | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         esac | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-02-21 12:46:45 +00:00
										 |  |  | bbr_menu() { | 
					
						
							|  |  |  |     echo -e "${green}\t1.${plain} Enable BBR" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} Disable BBR" | 
					
						
							|  |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2024-02-21 12:46:45 +00:00
										 |  |  |     case "$choice" in | 
					
						
							|  |  |  |     0) | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							|  |  |  |         enable_bbr | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         bbr_menu | 
					
						
							| 
									
										
										
										
											2024-02-21 12:46:45 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         disable_bbr | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         bbr_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-03-04 08:50:24 +00:00
										 |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         bbr_menu | 
					
						
							| 
									
										
										
										
											2024-02-21 12:46:45 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | disable_bbr() { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if ! grep -q "net.core.default_qdisc=fq" /etc/sysctl.conf || ! grep -q "net.ipv4.tcp_congestion_control=bbr" /etc/sysctl.conf; then | 
					
						
							|  |  |  |         echo -e "${yellow}BBR is not currently enabled.${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         before_show_menu | 
					
						
							| 
									
										
										
										
											2024-02-21 12:46:45 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Replace BBR with CUBIC configurations | 
					
						
							|  |  |  |     sed -i 's/net.core.default_qdisc=fq/net.core.default_qdisc=pfifo_fast/' /etc/sysctl.conf | 
					
						
							|  |  |  |     sed -i 's/net.ipv4.tcp_congestion_control=bbr/net.ipv4.tcp_congestion_control=cubic/' /etc/sysctl.conf | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Apply changes | 
					
						
							|  |  |  |     sysctl -p | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Verify that BBR is replaced with CUBIC | 
					
						
							|  |  |  |     if [[ $(sysctl net.ipv4.tcp_congestion_control | awk '{print $3}') == "cubic" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}BBR has been replaced with CUBIC successfully.${plain}" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${red}Failed to replace BBR with CUBIC. Please check your system configuration.${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  | enable_bbr() { | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     if grep -q "net.core.default_qdisc=fq" /etc/sysctl.conf && grep -q "net.ipv4.tcp_congestion_control=bbr" /etc/sysctl.conf; then | 
					
						
							|  |  |  |         echo -e "${green}BBR is already enabled!${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         before_show_menu | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     # Check the OS and install necessary packages | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     case "${release}" in | 
					
						
							| 
									
										
										
										
											2024-04-01 08:42:28 +00:00
										 |  |  |     ubuntu | debian | armbian) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         apt-get update && apt-get install -yqq --no-install-recommends ca-certificates | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-06-19 06:38:24 +00:00
										 |  |  |     centos | rhel | almalinux | rocky | ol) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         yum -y update && yum -y install ca-certificates | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-02-24 08:22:34 +00:00
										 |  |  |     fedora | amzn | virtuozzo) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         dnf -y update && dnf -y install ca-certificates | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-04-17 06:26:02 +00:00
										 |  |  |     arch | manjaro | parch) | 
					
						
							| 
									
										
										
										
											2024-04-01 08:42:28 +00:00
										 |  |  |         pacman -Sy --noconfirm ca-certificates | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     alpine) | 
					
						
							|  |  |  |         apk add ca-certificates | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     *) | 
					
						
							|  |  |  |         echo -e "${red}Unsupported operating system. Please check the script and install the necessary packages manually.${plain}\n" | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     esac | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     # Enable BBR | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     echo "net.core.default_qdisc=fq" | tee -a /etc/sysctl.conf | 
					
						
							|  |  |  |     echo "net.ipv4.tcp_congestion_control=bbr" | tee -a /etc/sysctl.conf | 
					
						
							| 
									
										
										
										
											2023-03-07 22:34:07 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     # Apply changes | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     sysctl -p | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     # Verify that BBR is enabled | 
					
						
							|  |  |  |     if [[ $(sysctl net.ipv4.tcp_congestion_control | awk '{print $3}') == "bbr" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}BBR has been enabled successfully.${plain}" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${red}Failed to enable BBR. Please check your system configuration.${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | update_shell() { | 
					
						
							| 
									
										
										
										
											2025-02-22 10:53:36 +00:00
										 |  |  |     wget -O /usr/bin/x-ui -N https://github.com/MHSanaei/3x-ui/raw/main/x-ui.sh | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     if [[ $? != 0 ]]; then | 
					
						
							|  |  |  |         echo "" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGE "Failed to download script, Please check whether the machine can connect Github" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         before_show_menu | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         chmod +x /usr/bin/x-ui | 
					
						
							| 
									
										
										
										
											2025-03-04 08:50:24 +00:00
										 |  |  |         LOGI "Upgrade script succeeded, Please rerun the script" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         before_show_menu | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | # 0: running, 1: not running, 2: not installed | 
					
						
							|  |  |  | check_status() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         if [[ ! -f /etc/init.d/x-ui ]]; then | 
					
						
							|  |  |  |             return 2 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         if [[ $(rc-service x-ui status | grep -F 'status: started' -c) == 1 ]]; then | 
					
						
							|  |  |  |             return 0 | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ ! -f /etc/systemd/system/x-ui.service ]]; then | 
					
						
							|  |  |  |             return 2 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         temp=$(systemctl status x-ui | grep Active | awk '{print $3}' | cut -d "(" -f2 | cut -d ")" -f1) | 
					
						
							|  |  |  |         if [[ "${temp}" == "running" ]]; then | 
					
						
							|  |  |  |             return 0 | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | check_enabled() { | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         if [[ $(rc-update show | grep -F 'x-ui' | grep default -c) == 1 ]]; then | 
					
						
							|  |  |  |             return 0 | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         temp=$(systemctl is-enabled x-ui) | 
					
						
							|  |  |  |         if [[ "${temp}" == "enabled" ]]; then | 
					
						
							|  |  |  |             return 0 | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | check_uninstall() { | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     if [[ $? != 2 ]]; then | 
					
						
							|  |  |  |         echo "" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         LOGE "Panel installed, Please do not reinstall" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             before_show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 1 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | check_install() { | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     if [[ $? == 2 ]]; then | 
					
						
							|  |  |  |         echo "" | 
					
						
							|  |  |  |         LOGE "Please install the panel first" | 
					
						
							|  |  |  |         if [[ $# == 0 ]]; then | 
					
						
							|  |  |  |             before_show_menu | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         return 1 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | show_status() { | 
					
						
							|  |  |  |     check_status | 
					
						
							|  |  |  |     case $? in | 
					
						
							|  |  |  |     0) | 
					
						
							| 
									
										
										
										
											2023-02-20 17:29:55 +00:00
										 |  |  |         echo -e "Panel state: ${green}Running${plain}" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         show_enable_status | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							|  |  |  |         echo -e "Panel state: ${yellow}Not Running${plain}" | 
					
						
							|  |  |  |         show_enable_status | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         echo -e "Panel state: ${red}Not Installed${plain}" | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     esac | 
					
						
							|  |  |  |     show_xray_status | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | show_enable_status() { | 
					
						
							|  |  |  |     check_enabled | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |         echo -e "Start automatically: ${green}Yes${plain}" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "Start automatically: ${red}No${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | check_xray_status() { | 
					
						
							|  |  |  |     count=$(ps -ef | grep "xray-linux" | grep -v "grep" | wc -l) | 
					
						
							|  |  |  |     if [[ count -ne 0 ]]; then | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         return 1 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | show_xray_status() { | 
					
						
							|  |  |  |     check_xray_status | 
					
						
							|  |  |  |     if [[ $? == 0 ]]; then | 
					
						
							| 
									
										
										
										
											2023-02-20 17:29:55 +00:00
										 |  |  |         echo -e "xray state: ${green}Running${plain}" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     else | 
					
						
							|  |  |  |         echo -e "xray state: ${red}Not Running${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | firewall_menu() { | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |     echo -e "${green}\t1.${plain} ${green}Install${plain} Firewall" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} Port List [numbered]" | 
					
						
							|  |  |  |     echo -e "${green}\t3.${plain} ${green}Open${plain} Ports" | 
					
						
							|  |  |  |     echo -e "${green}\t4.${plain} ${red}Delete${plain} Ports from List" | 
					
						
							|  |  |  |     echo -e "${green}\t5.${plain} ${green}Enable${plain} Firewall" | 
					
						
							|  |  |  |     echo -e "${green}\t6.${plain} ${red}Disable${plain} Firewall" | 
					
						
							|  |  |  |     echo -e "${green}\t7.${plain} Firewall Status" | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |     case "$choice" in | 
					
						
							|  |  |  |     0) | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |         install_firewall | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         firewall_menu | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							| 
									
										
										
										
											2024-12-20 22:48:10 +00:00
										 |  |  |         ufw status numbered | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         firewall_menu | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     3) | 
					
						
							| 
									
										
										
										
											2024-12-20 22:48:10 +00:00
										 |  |  |         open_ports | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         firewall_menu | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     4) | 
					
						
							| 
									
										
										
										
											2024-12-20 22:48:10 +00:00
										 |  |  |         delete_ports | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |         firewall_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     5) | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |         ufw enable | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         firewall_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |     6) | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |         ufw disable | 
					
						
							|  |  |  |         firewall_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     7) | 
					
						
							| 
									
										
										
										
											2024-12-20 22:48:10 +00:00
										 |  |  |         ufw status verbose | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |         firewall_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-03-04 08:50:24 +00:00
										 |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         firewall_menu | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  | install_firewall() { | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |     if ! command -v ufw &>/dev/null; then | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         echo "ufw firewall is not installed. Installing now..." | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |         apt-get update | 
					
						
							|  |  |  |         apt-get install -y ufw | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         echo "ufw firewall is already installed" | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     # Check if the firewall is inactive | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     if ufw status | grep -q "Status: active"; then | 
					
						
							| 
									
										
										
										
											2024-04-20 18:29:27 +00:00
										 |  |  |         echo "Firewall is already active" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-04-20 18:29:27 +00:00
										 |  |  |         echo "Activating firewall..." | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         # Open the necessary ports | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |         ufw allow ssh | 
					
						
							|  |  |  |         ufw allow http | 
					
						
							|  |  |  |         ufw allow https | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |         ufw allow 2053/tcp #webPort | 
					
						
							|  |  |  |         ufw allow 2096/tcp #subport | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |         # Enable the firewall | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |         ufw --force enable | 
					
						
							| 
									
										
										
										
											2024-12-20 18:04:34 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  | } | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  | open_ports() { | 
					
						
							|  |  |  |     # Prompt the user to enter the ports they want to open | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Enter the ports you want to open (e.g. 80,443,2053 or range 400-500): " ports | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     # Check if the input is valid | 
					
						
							|  |  |  |     if ! [[ $ports =~ ^([0-9]+|[0-9]+-[0-9]+)(,([0-9]+|[0-9]+-[0-9]+))*$ ]]; then | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |         echo "Error: Invalid input. Please enter a comma-separated list of ports or a range of ports (e.g. 80,443,2053 or 400-500)." >&2 | 
					
						
							|  |  |  |         exit 1 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Open the specified ports using ufw | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |     IFS=',' read -ra PORT_LIST <<<"$ports" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     for port in "${PORT_LIST[@]}"; do | 
					
						
							|  |  |  |         if [[ $port == *-* ]]; then | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |             # Split the range into start and end ports | 
					
						
							|  |  |  |             start_port=$(echo $port | cut -d'-' -f1) | 
					
						
							|  |  |  |             end_port=$(echo $port | cut -d'-' -f2) | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |             # Open the port range | 
					
						
							| 
									
										
										
										
											2024-04-22 21:05:05 +00:00
										 |  |  |             ufw allow $start_port:$end_port/tcp | 
					
						
							|  |  |  |             ufw allow $start_port:$end_port/udp | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         else | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |             # Open the single port | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |             ufw allow "$port" | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |         fi | 
					
						
							|  |  |  |     done | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-12-20 17:43:47 +00:00
										 |  |  |     # Confirm that the ports are opened | 
					
						
							|  |  |  |     echo "Opened the specified ports:" | 
					
						
							|  |  |  |     for port in "${PORT_LIST[@]}"; do | 
					
						
							|  |  |  |         if [[ $port == *-* ]]; then | 
					
						
							|  |  |  |             start_port=$(echo $port | cut -d'-' -f1) | 
					
						
							|  |  |  |             end_port=$(echo $port | cut -d'-' -f2) | 
					
						
							|  |  |  |             # Check if the port range has been successfully opened | 
					
						
							|  |  |  |             (ufw status | grep -q "$start_port:$end_port") && echo "$start_port-$end_port" | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             # Check if the individual port has been successfully opened | 
					
						
							|  |  |  |             (ufw status | grep -q "$port") && echo "$port" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     done | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | } | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | delete_ports() { | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |     # Display current rules with numbers | 
					
						
							|  |  |  |     echo "Current UFW rules:" | 
					
						
							|  |  |  |     ufw status numbered | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Ask the user how they want to delete rules | 
					
						
							|  |  |  |     echo "Do you want to delete rules by:" | 
					
						
							|  |  |  |     echo "1) Rule numbers" | 
					
						
							|  |  |  |     echo "2) Ports" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Enter your choice (1 or 2): " choice | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     if [[ $choice -eq 1 ]]; then | 
					
						
							|  |  |  |         # Deleting by rule numbers | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Enter the rule numbers you want to delete (1, 2, etc.): " rule_numbers | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |         # Validate the input | 
					
						
							|  |  |  |         if ! [[ $rule_numbers =~ ^([0-9]+)(,[0-9]+)*$ ]]; then | 
					
						
							|  |  |  |             echo "Error: Invalid input. Please enter a comma-separated list of rule numbers." >&2 | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |         # Split numbers into an array | 
					
						
							|  |  |  |         IFS=',' read -ra RULE_NUMBERS <<<"$rule_numbers" | 
					
						
							|  |  |  |         for rule_number in "${RULE_NUMBERS[@]}"; do | 
					
						
							|  |  |  |             # Delete the rule by number | 
					
						
							|  |  |  |             ufw delete "$rule_number" || echo "Failed to delete rule number $rule_number" | 
					
						
							|  |  |  |         done | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |         echo "Selected rules have been deleted." | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |     elif [[ $choice -eq 2 ]]; then | 
					
						
							|  |  |  |         # Deleting by ports | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Enter the ports you want to delete (e.g. 80,443,2053 or range 400-500): " ports | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  |         # Validate the input | 
					
						
							|  |  |  |         if ! [[ $ports =~ ^([0-9]+|[0-9]+-[0-9]+)(,([0-9]+|[0-9]+-[0-9]+))*$ ]]; then | 
					
						
							|  |  |  |             echo "Error: Invalid input. Please enter a comma-separated list of ports or a range of ports (e.g. 80,443,2053 or 400-500)." >&2 | 
					
						
							|  |  |  |             exit 1 | 
					
						
							| 
									
										
										
										
											2024-04-22 21:05:05 +00:00
										 |  |  |         fi | 
					
						
							| 
									
										
										
										
											2025-01-05 14:53:53 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |         # Split ports into an array | 
					
						
							|  |  |  |         IFS=',' read -ra PORT_LIST <<<"$ports" | 
					
						
							|  |  |  |         for port in "${PORT_LIST[@]}"; do | 
					
						
							|  |  |  |             if [[ $port == *-* ]]; then | 
					
						
							|  |  |  |                 # Split the port range | 
					
						
							|  |  |  |                 start_port=$(echo $port | cut -d'-' -f1) | 
					
						
							|  |  |  |                 end_port=$(echo $port | cut -d'-' -f2) | 
					
						
							|  |  |  |                 # Delete the port range | 
					
						
							|  |  |  |                 ufw delete allow $start_port:$end_port/tcp | 
					
						
							|  |  |  |                 ufw delete allow $start_port:$end_port/udp | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 # Delete a single port | 
					
						
							|  |  |  |                 ufw delete allow "$port" | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         done | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         # Confirmation of deletion | 
					
						
							|  |  |  |         echo "Deleted the specified ports:" | 
					
						
							|  |  |  |         for port in "${PORT_LIST[@]}"; do | 
					
						
							|  |  |  |             if [[ $port == *-* ]]; then | 
					
						
							|  |  |  |                 start_port=$(echo $port | cut -d'-' -f1) | 
					
						
							|  |  |  |                 end_port=$(echo $port | cut -d'-' -f2) | 
					
						
							|  |  |  |                 # Check if the port range has been deleted | 
					
						
							|  |  |  |                 (ufw status | grep -q "$start_port:$end_port") || echo "$start_port-$end_port" | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 # Check if the individual port has been deleted | 
					
						
							|  |  |  |                 (ufw status | grep -q "$port") || echo "$port" | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         done | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo "${red}Error:${plain} Invalid choice. Please enter 1 or 2." >&2 | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-02-07 17:53:11 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | update_geo() { | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |     echo -e "${green}\t1.${plain} Loyalsoldier (geoip.dat, geosite.dat)" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} chocolate4u (geoip_IR.dat, geosite_IR.dat)" | 
					
						
							| 
									
										
										
										
											2025-01-05 13:45:25 +00:00
										 |  |  |     echo -e "${green}\t3.${plain} runetfreedom (geoip_RU.dat, geosite_RU.dat)" | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |     cd /usr/local/x-ui/bin | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     case "$choice" in | 
					
						
							|  |  |  |     0) | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service x-ui stop | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl stop x-ui | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         rm -f geoip.dat geosite.dat | 
					
						
							|  |  |  |         wget -N https://github.com/Loyalsoldier/v2ray-rules-dat/releases/latest/download/geoip.dat | 
					
						
							|  |  |  |         wget -N https://github.com/Loyalsoldier/v2ray-rules-dat/releases/latest/download/geosite.dat | 
					
						
							|  |  |  |         echo -e "${green}Loyalsoldier datasets have been updated successfully!${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         restart | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service x-ui stop | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl stop x-ui | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         rm -f geoip_IR.dat geosite_IR.dat | 
					
						
							|  |  |  |         wget -O geoip_IR.dat -N https://github.com/chocolate4u/Iran-v2ray-rules/releases/latest/download/geoip.dat | 
					
						
							|  |  |  |         wget -O geosite_IR.dat -N https://github.com/chocolate4u/Iran-v2ray-rules/releases/latest/download/geosite.dat | 
					
						
							|  |  |  |         echo -e "${green}chocolate4u datasets have been updated successfully!${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         restart | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     3) | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service x-ui stop | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl stop x-ui | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2025-01-05 13:45:25 +00:00
										 |  |  |         rm -f geoip_RU.dat geosite_RU.dat | 
					
						
							|  |  |  |         wget -O geoip_RU.dat -N https://github.com/runetfreedom/russia-v2ray-rules-dat/releases/latest/download/geoip.dat | 
					
						
							|  |  |  |         wget -O geosite_RU.dat -N https://github.com/runetfreedom/russia-v2ray-rules-dat/releases/latest/download/geosite.dat | 
					
						
							|  |  |  |         echo -e "${green}runetfreedom datasets have been updated successfully!${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         restart | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         update_geo | 
					
						
							| 
									
										
										
										
											2024-10-07 13:37:53 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     esac | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  |     before_show_menu | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  | install_acme() { | 
					
						
							| 
									
										
										
										
											2024-10-07 13:28:00 +00:00
										 |  |  |     # Check if acme.sh is already installed | 
					
						
							|  |  |  |     if command -v ~/.acme.sh/acme.sh &>/dev/null; then | 
					
						
							|  |  |  |         LOGI "acme.sh is already installed." | 
					
						
							|  |  |  |         return 0 | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     LOGI "Installing acme.sh..." | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |     cd ~ || return 1 # Ensure you can change to the home directory | 
					
						
							| 
									
										
										
										
											2024-10-07 13:28:00 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     curl -s https://get.acme.sh | sh | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:28:00 +00:00
										 |  |  |         LOGE "Installation of acme.sh failed." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         return 1 | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-10-07 13:28:00 +00:00
										 |  |  |         LOGI "Installation of acme.sh succeeded." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:28:00 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     return 0 | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-05-22 23:04:36 +00:00
										 |  |  | ssl_cert_issue_main() { | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     echo -e "${green}\t1.${plain} Get SSL" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} Revoke" | 
					
						
							|  |  |  |     echo -e "${green}\t3.${plain} Force Renew" | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |     echo -e "${green}\t4.${plain} Show Existing Domains" | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |     echo -e "${green}\t5.${plain} Set Cert paths for the panel" | 
					
						
							| 
									
										
										
										
											2023-09-01 09:56:03 +00:00
										 |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2023-05-22 23:04:36 +00:00
										 |  |  |     case "$choice" in | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     0) | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							|  |  |  |         ssl_cert_issue | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |         local domains=$(find /root/cert/ -mindepth 1 -maxdepth 1 -type d -exec basename {} \;) | 
					
						
							|  |  |  |         if [ -z "$domains" ]; then | 
					
						
							|  |  |  |             echo "No certificates found to revoke." | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo "Existing domains:" | 
					
						
							|  |  |  |             echo "$domains" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Please enter a domain from the list to revoke the certificate: " domain | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |             if echo "$domains" | grep -qw "$domain"; then | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |                 ~/.acme.sh/acme.sh --revoke -d ${domain} | 
					
						
							|  |  |  |                 LOGI "Certificate revoked for domain: $domain" | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 echo "Invalid domain entered." | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     3) | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |         local domains=$(find /root/cert/ -mindepth 1 -maxdepth 1 -type d -exec basename {} \;) | 
					
						
							|  |  |  |         if [ -z "$domains" ]; then | 
					
						
							|  |  |  |             echo "No certificates found to renew." | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo "Existing domains:" | 
					
						
							|  |  |  |             echo "$domains" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Please enter a domain from the list to renew the SSL certificate: " domain | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |             if echo "$domains" | grep -qw "$domain"; then | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |                 ~/.acme.sh/acme.sh --renew -d ${domain} --force | 
					
						
							|  |  |  |                 LOGI "Certificate forcefully renewed for domain: $domain" | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 echo "Invalid domain entered." | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     4) | 
					
						
							|  |  |  |         local domains=$(find /root/cert/ -mindepth 1 -maxdepth 1 -type d -exec basename {} \;) | 
					
						
							|  |  |  |         if [ -z "$domains" ]; then | 
					
						
							|  |  |  |             echo "No certificates found." | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo "Existing domains and their paths:" | 
					
						
							|  |  |  |             for domain in $domains; do | 
					
						
							|  |  |  |                 local cert_path="/root/cert/${domain}/fullchain.pem" | 
					
						
							|  |  |  |                 local key_path="/root/cert/${domain}/privkey.pem" | 
					
						
							|  |  |  |                 if [[ -f "${cert_path}" && -f "${key_path}" ]]; then | 
					
						
							|  |  |  |                     echo -e "Domain: ${domain}" | 
					
						
							|  |  |  |                     echo -e "\tCertificate Path: ${cert_path}" | 
					
						
							|  |  |  |                     echo -e "\tPrivate Key Path: ${key_path}" | 
					
						
							|  |  |  |                 else | 
					
						
							|  |  |  |                     echo -e "Domain: ${domain} - Certificate or Key missing." | 
					
						
							|  |  |  |                 fi | 
					
						
							|  |  |  |             done | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-10-07 12:50:59 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |     5) | 
					
						
							|  |  |  |         local domains=$(find /root/cert/ -mindepth 1 -maxdepth 1 -type d -exec basename {} \;) | 
					
						
							|  |  |  |         if [ -z "$domains" ]; then | 
					
						
							|  |  |  |             echo "No certificates found." | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo "Available domains:" | 
					
						
							|  |  |  |             echo "$domains" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Please choose a domain to set the panel paths: " domain | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |             if echo "$domains" | grep -qw "$domain"; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |                 local webCertFile="/root/cert/${domain}/fullchain.pem" | 
					
						
							|  |  |  |                 local webKeyFile="/root/cert/${domain}/privkey.pem" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |                 if [[ -f "${webCertFile}" && -f "${webKeyFile}" ]]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |                     /usr/local/x-ui/x-ui cert -webCert "$webCertFile" -webCertKey "$webKeyFile" | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |                     echo "Panel paths set for domain: $domain" | 
					
						
							|  |  |  |                     echo "  - Certificate File: $webCertFile" | 
					
						
							|  |  |  |                     echo "  - Private Key File: $webKeyFile" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:38:23 +00:00
										 |  |  |                     restart | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |                 else | 
					
						
							|  |  |  |                     echo "Certificate or private key not found for domain: $domain." | 
					
						
							|  |  |  |                 fi | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 echo "Invalid domain entered." | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-10-07 13:13:38 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-05-22 23:04:36 +00:00
										 |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-29 21:27:15 +00:00
										 |  |  | ssl_cert_issue() { | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |     local existing_webBasePath=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'webBasePath: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_port=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'port: .+' | awk '{print $2}') | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     # check for acme.sh first | 
					
						
							| 
									
										
										
										
											2023-02-20 17:29:55 +00:00
										 |  |  |     if ! command -v ~/.acme.sh/acme.sh &>/dev/null; then | 
					
						
							|  |  |  |         echo "acme.sh could not be found. we will install it" | 
					
						
							|  |  |  |         install_acme | 
					
						
							|  |  |  |         if [ $? -ne 0 ]; then | 
					
						
							|  |  |  |             LOGE "install acme failed, please check logs" | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     # install socat second | 
					
						
							|  |  |  |     case "${release}" in | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     ubuntu | debian | armbian) | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |         apt-get update && apt-get install socat -y | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-06-19 06:38:24 +00:00
										 |  |  |     centos | rhel | almalinux | rocky | ol) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         yum -y update && yum -y install socat | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-02-24 08:22:34 +00:00
										 |  |  |     fedora | amzn | virtuozzo) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         dnf -y update && dnf -y install socat | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-04-17 06:26:02 +00:00
										 |  |  |     arch | manjaro | parch) | 
					
						
							| 
									
										
										
										
											2024-04-01 08:42:28 +00:00
										 |  |  |         pacman -Sy --noconfirm socat | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     alpine) | 
					
						
							|  |  |  |         apk add socat | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     *) | 
					
						
							|  |  |  |         echo -e "${red}Unsupported operating system. Please check the script and install the necessary packages manually.${plain}\n" | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     esac | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |         LOGE "install socat failed, please check logs" | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         exit 1 | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         LOGI "install socat succeed..." | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-04-02 17:31:08 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # get the domain here, and we need to verify it | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     local domain="" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Please enter your domain name: " domain | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     LOGD "Your domain is: ${domain}, checking it..." | 
					
						
							| 
									
										
										
										
											2023-05-22 23:04:36 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # check if there already exists a certificate | 
					
						
							|  |  |  |     local currentCert=$(~/.acme.sh/acme.sh --list | tail -1 | awk '{print $1}') | 
					
						
							|  |  |  |     if [ "${currentCert}" == "${domain}" ]; then | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         local certInfo=$(~/.acme.sh/acme.sh --list) | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "System already has certificates for this domain. Cannot issue again. Current certificate details:" | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         LOGI "$certInfo" | 
					
						
							| 
									
										
										
										
											2023-05-22 23:45:34 +00:00
										 |  |  |         exit 1 | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGI "Your domain is ready for issuing certificates now..." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # create a directory for the certificate | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |     certPath="/root/cert/${domain}" | 
					
						
							|  |  |  |     if [ ! -d "$certPath" ]; then | 
					
						
							|  |  |  |         mkdir -p "$certPath" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         rm -rf "$certPath" | 
					
						
							|  |  |  |         mkdir -p "$certPath" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # get the port number for the standalone server | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     local WebPort=80 | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Please choose which port to use (default is 80): " WebPort | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     if [[ ${WebPort} -gt 65535 || ${WebPort} -lt 1 ]]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "Your input ${WebPort} is invalid, will use default port 80." | 
					
						
							|  |  |  |         WebPort=80 | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     LOGI "Will use port: ${WebPort} to issue certificates. Please make sure this port is open." | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # issue the certificate | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     ~/.acme.sh/acme.sh --set-default-ca --server letsencrypt | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |     ~/.acme.sh/acme.sh --issue -d ${domain} --listen-v6 --standalone --httpport ${WebPort} --force | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "Issuing certificate failed, please check logs." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         rm -rf ~/.acme.sh/${domain} | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "Issuing certificate succeeded, installing certificates..." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |     reloadCmd="x-ui restart" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     LOGI "Default --reloadcmd for ACME is: ${yellow}x-ui restart" | 
					
						
							|  |  |  |     LOGI "This command will run on every certificate issue and renew." | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Would you like to modify --reloadcmd for ACME? (y/n): " setReloadcmd | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |     if [[ "$setReloadcmd" == "y" || "$setReloadcmd" == "Y" ]]; then | 
					
						
							|  |  |  |         echo -e "\n${green}\t1.${plain} Preset: systemctl reload nginx ; x-ui restart" | 
					
						
							|  |  |  |         echo -e "${green}\t2.${plain} Input your own command" | 
					
						
							|  |  |  |         echo -e "${green}\t0.${plain} Keep default reloadcmd" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |         case "$choice" in | 
					
						
							|  |  |  |         1) | 
					
						
							|  |  |  |             LOGI "Reloadcmd is: systemctl reload nginx ; x-ui restart" | 
					
						
							|  |  |  |             reloadCmd="systemctl reload nginx ; x-ui restart" | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         2)   | 
					
						
							|  |  |  |             LOGD "It's recommended to put x-ui restart at the end, so it won't raise an error if other services fails" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Please enter your reloadcmd (example: systemctl reload nginx ; x-ui restart): " reloadCmd | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |             LOGI "Your reloadcmd is: ${reloadCmd}" | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         *) | 
					
						
							|  |  |  |             LOGI "Keep default reloadcmd" | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         esac | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # install the certificate | 
					
						
							| 
									
										
										
										
											2023-04-02 17:31:08 +00:00
										 |  |  |     ~/.acme.sh/acme.sh --installcert -d ${domain} \
 | 
					
						
							|  |  |  |         --key-file /root/cert/${domain}/privkey.pem \
 | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |         --fullchain-file /root/cert/${domain}/fullchain.pem --reloadcmd "${reloadCmd}" | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "Installing certificate failed, exiting." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |         rm -rf ~/.acme.sh/${domain} | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGI "Installing certificate succeeded, enabling auto renew..." | 
					
						
							| 
									
										
										
										
											2023-02-15 18:57:42 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     # enable auto-renew | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |     ~/.acme.sh/acme.sh --upgrade --auto-upgrade | 
					
						
							|  |  |  |     if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGE "Auto renew failed, certificate details:" | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |         ls -lah cert/* | 
					
						
							|  |  |  |         chmod 755 $certPath/* | 
					
						
							|  |  |  |         exit 1 | 
					
						
							|  |  |  |     else | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         LOGI "Auto renew succeeded, certificate details:" | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |         ls -lah cert/* | 
					
						
							|  |  |  |         chmod 755 $certPath/* | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     # Prompt user to set panel paths after successful certificate installation | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Would you like to set this certificate for the panel? (y/n): " setPanel | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |     if [[ "$setPanel" == "y" || "$setPanel" == "Y" ]]; then | 
					
						
							|  |  |  |         local webCertFile="/root/cert/${domain}/fullchain.pem" | 
					
						
							|  |  |  |         local webKeyFile="/root/cert/${domain}/privkey.pem" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         if [[ -f "$webCertFile" && -f "$webKeyFile" ]]; then | 
					
						
							| 
									
										
										
										
											2024-10-07 15:21:32 +00:00
										 |  |  |             /usr/local/x-ui/x-ui cert -webCert "$webCertFile" -webCertKey "$webKeyFile" | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |             LOGI "Panel paths set for domain: $domain" | 
					
						
							|  |  |  |             LOGI "  - Certificate File: $webCertFile" | 
					
						
							|  |  |  |             LOGI "  - Private Key File: $webKeyFile" | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |             echo -e "${green}Access URL: https://${domain}:${existing_port}${existing_webBasePath}${plain}" | 
					
						
							| 
									
										
										
										
											2024-10-07 15:38:23 +00:00
										 |  |  |             restart | 
					
						
							| 
									
										
										
										
											2024-10-07 13:18:56 +00:00
										 |  |  |         else | 
					
						
							|  |  |  |             LOGE "Error: Certificate or private key file not found for domain: $domain." | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         LOGI "Skipping panel path setting." | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  | } | 
					
						
							| 
									
										
										
										
											2023-04-18 05:51:21 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  | ssl_cert_issue_CF() { | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |     local existing_webBasePath=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'webBasePath: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_port=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'port: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     LOGI "****** Instructions for Use ******" | 
					
						
							|  |  |  |     LOGI "Follow the steps below to complete the process:" | 
					
						
							|  |  |  |     LOGI "1. Cloudflare Registered E-mail." | 
					
						
							|  |  |  |     LOGI "2. Cloudflare Global API Key." | 
					
						
							|  |  |  |     LOGI "3. The Domain Name." | 
					
						
							|  |  |  |     LOGI "4. Once the certificate is issued, you will be prompted to set the certificate for the panel (optional)." | 
					
						
							|  |  |  |     LOGI "5. The script also supports automatic renewal of the SSL certificate after installation." | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     confirm "Do you confirm the information and wish to proceed? [y/n]" "y" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |     if [ $? -eq 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         # Check for acme.sh first | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         if ! command -v ~/.acme.sh/acme.sh &>/dev/null; then | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             echo "acme.sh could not be found. We will install it." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |             install_acme | 
					
						
							|  |  |  |             if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |                 LOGE "Install acme failed, please check logs." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |                 exit 1 | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         CF_Domain="" | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         LOGD "Please set a domain name:" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Input your domain here: " CF_Domain | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         LOGD "Your domain name is set to: ${CF_Domain}" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         # Set up Cloudflare API details | 
					
						
							|  |  |  |         CF_GlobalKey="" | 
					
						
							|  |  |  |         CF_AccountEmail="" | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         LOGD "Please set the API key:" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Input your key here: " CF_GlobalKey | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         LOGD "Your API key is: ${CF_GlobalKey}" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         LOGD "Please set up registered email:" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Input your email here: " CF_AccountEmail | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         LOGD "Your registered email address is: ${CF_AccountEmail}" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         # Set the default CA to Let's Encrypt | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         ~/.acme.sh/acme.sh --set-default-ca --server letsencrypt | 
					
						
							|  |  |  |         if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             LOGE "Default CA, Let'sEncrypt fail, script exiting..." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |             exit 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         export CF_Key="${CF_GlobalKey}" | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         export CF_Email="${CF_AccountEmail}" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         # Issue the certificate using Cloudflare DNS | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |         ~/.acme.sh/acme.sh --issue --dns dns_cf -d ${CF_Domain} -d *.${CF_Domain} --log --force | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         if [ $? -ne 0 ]; then | 
					
						
							|  |  |  |             LOGE "Certificate issuance failed, script exiting..." | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |         else | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             LOGI "Certificate issued successfully, Installing..." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |          # Install the certificate | 
					
						
							|  |  |  |         certPath="/root/cert/${CF_Domain}" | 
					
						
							|  |  |  |         if [ -d "$certPath" ]; then | 
					
						
							|  |  |  |             rm -rf ${certPath} | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         mkdir -p ${certPath} | 
					
						
							| 
									
										
										
										
											2024-11-16 11:32:16 +00:00
										 |  |  |         if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             LOGE "Failed to create directory: ${certPath}" | 
					
						
							| 
									
										
										
										
											2024-11-16 11:32:16 +00:00
										 |  |  |             exit 1 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |         reloadCmd="x-ui restart" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         LOGI "Default --reloadcmd for ACME is: ${yellow}x-ui restart" | 
					
						
							|  |  |  |         LOGI "This command will run on every certificate issue and renew." | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Would you like to modify --reloadcmd for ACME? (y/n): " setReloadcmd | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |         if [[ "$setReloadcmd" == "y" || "$setReloadcmd" == "Y" ]]; then | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |             echo -e "\n${green}\t1.${plain} Preset: systemctl reload nginx ; x-ui restart" | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             echo -e "${green}\t2.${plain} Input your own command" | 
					
						
							|  |  |  |             echo -e "${green}\t0.${plain} Keep default reloadcmd" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             case "$choice" in | 
					
						
							|  |  |  |             1) | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |                 LOGI "Reloadcmd is: systemctl reload nginx ; x-ui restart" | 
					
						
							|  |  |  |                 reloadCmd="systemctl reload nginx ; x-ui restart" | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |                 ;; | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |             2)   | 
					
						
							|  |  |  |                 LOGD "It's recommended to put x-ui restart at the end, so it won't raise an error if other services fails" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |                 read -rp "Please enter your reloadcmd (example: systemctl reload nginx ; x-ui restart): " reloadCmd | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |                 LOGI "Your reloadcmd is: ${reloadCmd}" | 
					
						
							|  |  |  |                 ;; | 
					
						
							|  |  |  |             *) | 
					
						
							|  |  |  |                 LOGI "Keep default reloadcmd" | 
					
						
							|  |  |  |                 ;; | 
					
						
							|  |  |  |             esac | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         ~/.acme.sh/acme.sh --installcert -d ${CF_Domain} -d *.${CF_Domain} \
 | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             --key-file ${certPath}/privkey.pem \
 | 
					
						
							|  |  |  |             --fullchain-file ${certPath}/fullchain.pem --reloadcmd "${reloadCmd}" | 
					
						
							| 
									
										
										
										
											2025-03-18 12:47:58 +00:00
										 |  |  |          | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         if [ $? -ne 0 ]; then | 
					
						
							|  |  |  |             LOGE "Certificate installation failed, script exiting..." | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |         else | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             LOGI "Certificate installed successfully, Turning on automatic updates..." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |         # Enable auto-update | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         ~/.acme.sh/acme.sh --upgrade --auto-upgrade | 
					
						
							|  |  |  |         if [ $? -ne 0 ]; then | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             LOGE "Auto update setup failed, script exiting..." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |             exit 1 | 
					
						
							|  |  |  |         else | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |             LOGI "The certificate is installed and auto-renewal is turned on. Specific information is as follows:" | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             ls -lah ${certPath}/* | 
					
						
							|  |  |  |             chmod 755 ${certPath}/* | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         # Prompt user to set panel paths after successful certificate installation | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |         read -rp "Would you like to set this certificate for the panel? (y/n): " setPanel | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  |         if [[ "$setPanel" == "y" || "$setPanel" == "Y" ]]; then | 
					
						
							| 
									
										
										
										
											2025-03-17 08:12:52 +00:00
										 |  |  |             local webCertFile="${certPath}/fullchain.pem" | 
					
						
							|  |  |  |             local webKeyFile="${certPath}/privkey.pem" | 
					
						
							| 
									
										
										
										
											2024-11-13 16:27:55 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |             if [[ -f "$webCertFile" && -f "$webKeyFile" ]]; then | 
					
						
							|  |  |  |                 /usr/local/x-ui/x-ui cert -webCert "$webCertFile" -webCertKey "$webKeyFile" | 
					
						
							|  |  |  |                 LOGI "Panel paths set for domain: $CF_Domain" | 
					
						
							|  |  |  |                 LOGI "  - Certificate File: $webCertFile" | 
					
						
							|  |  |  |                 LOGI "  - Private Key File: $webKeyFile" | 
					
						
							|  |  |  |                 echo -e "${green}Access URL: https://${CF_Domain}:${existing_port}${existing_webBasePath}${plain}" | 
					
						
							|  |  |  |                 restart | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 LOGE "Error: Certificate or private key file not found for domain: $CF_Domain." | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             LOGI "Skipping panel path setting." | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-04-03 15:52:23 +00:00
										 |  |  | run_speedtest() { | 
					
						
							|  |  |  |     # Check if Speedtest is already installed | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     if ! command -v speedtest &>/dev/null; then | 
					
						
							| 
									
										
										
										
											2024-11-20 21:48:32 +00:00
										 |  |  |         # If not installed, determine installation method | 
					
						
							|  |  |  |         if command -v snap &>/dev/null; then | 
					
						
							|  |  |  |             # Use snap to install Speedtest | 
					
						
							|  |  |  |             echo "Installing Speedtest using snap..." | 
					
						
							|  |  |  |             snap install speedtest | 
					
						
							| 
									
										
										
										
											2023-05-22 23:13:15 +00:00
										 |  |  |         else | 
					
						
							| 
									
										
										
										
											2024-11-20 21:48:32 +00:00
										 |  |  |             # Fallback to using package managers | 
					
						
							|  |  |  |             local pkg_manager="" | 
					
						
							|  |  |  |             local speedtest_install_script="" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             if command -v dnf &>/dev/null; then | 
					
						
							|  |  |  |                 pkg_manager="dnf" | 
					
						
							|  |  |  |                 speedtest_install_script="https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.rpm.sh" | 
					
						
							|  |  |  |             elif command -v yum &>/dev/null; then | 
					
						
							|  |  |  |                 pkg_manager="yum" | 
					
						
							|  |  |  |                 speedtest_install_script="https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.rpm.sh" | 
					
						
							|  |  |  |             elif command -v apt-get &>/dev/null; then | 
					
						
							|  |  |  |                 pkg_manager="apt-get" | 
					
						
							|  |  |  |                 speedtest_install_script="https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.deb.sh" | 
					
						
							|  |  |  |             elif command -v apt &>/dev/null; then | 
					
						
							|  |  |  |                 pkg_manager="apt" | 
					
						
							|  |  |  |                 speedtest_install_script="https://packagecloud.io/install/repositories/ookla/speedtest-cli/script.deb.sh" | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             if [[ -z $pkg_manager ]]; then | 
					
						
							|  |  |  |                 echo "Error: Package manager not found. You may need to install Speedtest manually." | 
					
						
							|  |  |  |                 return 1 | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 echo "Installing Speedtest using $pkg_manager..." | 
					
						
							|  |  |  |                 curl -s $speedtest_install_script | bash | 
					
						
							|  |  |  |                 $pkg_manager install -y speedtest | 
					
						
							|  |  |  |             fi | 
					
						
							| 
									
										
										
										
											2023-04-03 20:30:29 +00:00
										 |  |  |         fi | 
					
						
							| 
									
										
										
										
											2023-04-03 15:52:23 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     speedtest | 
					
						
							|  |  |  | } | 
					
						
							| 
									
										
										
										
											2024-10-28 18:24:44 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-12-20 17:33:27 +00:00
										 |  |  | ip_validation() { | 
					
						
							|  |  |  |     ipv6_regex="^(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))$" | 
					
						
							|  |  |  |     ipv4_regex="^((25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]?|0)\.){3}(25[0-5]|2[0-4][0-9]|1[0-9][0-9]|[1-9][0-9]?|0)$" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  | iplimit_main() { | 
					
						
							|  |  |  |     echo -e "\n${green}\t1.${plain} Install Fail2ban and configure IP Limit" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} Change Ban Duration" | 
					
						
							|  |  |  |     echo -e "${green}\t3.${plain} Unban Everyone" | 
					
						
							| 
									
										
										
										
											2024-10-28 18:24:44 +00:00
										 |  |  |     echo -e "${green}\t4.${plain} Ban Logs" | 
					
						
							| 
									
										
										
										
											2024-12-19 13:53:09 +00:00
										 |  |  |     echo -e "${green}\t5.${plain} Ban an IP Address" | 
					
						
							|  |  |  |     echo -e "${green}\t6.${plain} Unban an IP Address" | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |     echo -e "${green}\t7.${plain} Real-Time Logs" | 
					
						
							|  |  |  |     echo -e "${green}\t8.${plain} Service Status" | 
					
						
							|  |  |  |     echo -e "${green}\t9.${plain} Service Restart" | 
					
						
							|  |  |  |     echo -e "${green}\t10.${plain} Uninstall Fail2ban and IP Limit" | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " choice | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     case "$choice" in | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     0) | 
					
						
							|  |  |  |         show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							|  |  |  |         confirm "Proceed with installation of Fail2ban & IP Limit?" "y" | 
					
						
							|  |  |  |         if [[ $? == 0 ]]; then | 
					
						
							|  |  |  |             install_iplimit | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             iplimit_main | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         read -rp "Please enter new Ban Duration in Minutes [default 30]: " NUM | 
					
						
							|  |  |  |         if [[ $NUM =~ ^[0-9]+$ ]]; then | 
					
						
							|  |  |  |             create_iplimit_jails ${NUM} | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |             if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |                 rc-service fail2ban restart | 
					
						
							|  |  |  |             else | 
					
						
							|  |  |  |                 systemctl restart fail2ban | 
					
						
							|  |  |  |             fi | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         else | 
					
						
							|  |  |  |             echo -e "${red}${NUM} is not a number! Please, try again.${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         iplimit_main | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     3) | 
					
						
							|  |  |  |         confirm "Proceed with Unbanning everyone from IP Limit jail?" "y" | 
					
						
							|  |  |  |         if [[ $? == 0 ]]; then | 
					
						
							| 
									
										
										
										
											2024-12-19 22:24:10 +00:00
										 |  |  |             fail2ban-client reload --restart --unban 3x-ipl | 
					
						
							| 
									
										
										
										
											2024-01-21 01:15:17 +00:00
										 |  |  |             truncate -s 0 "${iplimit_banned_log_path}" | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             echo -e "${green}All users Unbanned successfully.${plain}" | 
					
						
							|  |  |  |             iplimit_main | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo -e "${yellow}Cancelled.${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         iplimit_main | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     4) | 
					
						
							|  |  |  |         show_banlog | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     5) | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |         read -rp "Enter the IP address you want to ban: " ban_ip | 
					
						
							| 
									
										
										
										
											2024-12-20 17:33:27 +00:00
										 |  |  |         ip_validation | 
					
						
							|  |  |  |         if [[ $ban_ip =~ $ipv4_regex || $ban_ip =~ $ipv6_regex ]]; then | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |             fail2ban-client set 3x-ipl banip "$ban_ip" | 
					
						
							|  |  |  |             echo -e "${green}IP Address ${ban_ip} has been banned successfully.${plain}" | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo -e "${red}Invalid IP address format! Please try again.${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     6) | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |         read -rp "Enter the IP address you want to unban: " unban_ip | 
					
						
							| 
									
										
										
										
											2024-12-20 17:33:27 +00:00
										 |  |  |         ip_validation | 
					
						
							|  |  |  |         if [[ $unban_ip =~ $ipv4_regex || $unban_ip =~ $ipv6_regex ]]; then | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |             fail2ban-client set 3x-ipl unbanip "$unban_ip" | 
					
						
							|  |  |  |             echo -e "${green}IP Address ${unban_ip} has been unbanned successfully.${plain}" | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo -e "${red}Invalid IP address format! Please try again.${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2024-06-04 10:52:21 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     7) | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |         tail -f /var/log/fail2ban.log | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2024-10-28 18:24:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     8) | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |         service fail2ban status | 
					
						
							|  |  |  |         iplimit_main | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     9) | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service fail2ban restart | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl restart fail2ban | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-12-17 16:59:04 +00:00
										 |  |  |         iplimit_main | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     10) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         remove_iplimit | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         iplimit_main | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-12-18 11:31:05 +00:00
										 |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | install_iplimit() { | 
					
						
							|  |  |  |     if ! command -v fail2ban-client &>/dev/null; then | 
					
						
							|  |  |  |         echo -e "${green}Fail2ban is not installed. Installing now...!${plain}\n" | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |         # Check the OS and install necessary packages | 
					
						
							|  |  |  |         case "${release}" in | 
					
						
							| 
									
										
										
										
											2024-06-04 10:27:59 +00:00
										 |  |  |         ubuntu) | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |             apt-get update | 
					
						
							| 
									
										
										
										
											2024-06-04 10:27:59 +00:00
										 |  |  |             if [[ "${os_version}" -ge 24 ]]; then | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |                 apt-get install python3-pip -y | 
					
						
							| 
									
										
										
										
											2024-06-04 10:27:59 +00:00
										 |  |  |                 python3 -m pip install pyasynchat --break-system-packages | 
					
						
							|  |  |  |             fi | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |             apt-get install fail2ban -y | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         debian) | 
					
						
							|  |  |  |             apt-get update | 
					
						
							|  |  |  |             if [ "$os_version" -ge 12 ]; then | 
					
						
							|  |  |  |                 apt-get install -y python3-systemd | 
					
						
							|  |  |  |             fi | 
					
						
							|  |  |  |             apt-get install -y fail2ban | 
					
						
							| 
									
										
										
										
											2024-06-04 10:27:59 +00:00
										 |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |         armbian) | 
					
						
							|  |  |  |             apt-get update && apt-get install fail2ban -y | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-06-19 06:38:24 +00:00
										 |  |  |         centos | rhel | almalinux | rocky | ol) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             yum update -y && yum install epel-release -y | 
					
						
							|  |  |  |             yum -y install fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-02-24 08:22:34 +00:00
										 |  |  |         fedora | amzn | virtuozzo) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             dnf -y update && dnf -y install fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2024-04-17 06:26:02 +00:00
										 |  |  |         arch | manjaro | parch) | 
					
						
							| 
									
										
										
										
											2024-06-04 10:27:59 +00:00
										 |  |  |             pacman -Syu --noconfirm fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         alpine) | 
					
						
							|  |  |  |             apk add fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         *) | 
					
						
							|  |  |  |             echo -e "${red}Unsupported operating system. Please check the script and install the necessary packages manually.${plain}\n" | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |         esac | 
					
						
							| 
									
										
										
										
											2024-01-19 14:58:09 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |         if ! command -v fail2ban-client &>/dev/null; then | 
					
						
							|  |  |  |             echo -e "${red}Fail2ban installation failed.${plain}\n" | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |         echo -e "${green}Fail2ban installed successfully!${plain}\n" | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${yellow}Fail2ban is already installed.${plain}\n" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo -e "${green}Configuring IP Limit...${plain}\n" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  |     # make sure there's no conflict for jail files | 
					
						
							|  |  |  |     iplimit_remove_conflicts | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  |     # Check if log file exists | 
					
						
							|  |  |  |     if ! test -f "${iplimit_banned_log_path}"; then | 
					
						
							|  |  |  |         touch ${iplimit_banned_log_path} | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  |     # Check if service log file exists so fail2ban won't return error | 
					
						
							|  |  |  |     if ! test -f "${iplimit_log_path}"; then | 
					
						
							|  |  |  |         touch ${iplimit_log_path} | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-18 10:24:28 +00:00
										 |  |  |     # Create the iplimit jail files | 
					
						
							|  |  |  |     # we didn't pass the bantime here to use the default value | 
					
						
							|  |  |  |     create_iplimit_jails | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  |     # Launching fail2ban | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         if [[ $(rc-service fail2ban status | grep -F 'status: started' -c) == 0 ]]; then | 
					
						
							|  |  |  |             rc-service fail2ban start | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             rc-service fail2ban restart | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         rc-update add fail2ban | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     else | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if ! systemctl is-active --quiet fail2ban; then | 
					
						
							|  |  |  |             systemctl start fail2ban | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl restart fail2ban | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         systemctl enable fail2ban | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo -e "${green}IP Limit installed and configured successfully!${plain}\n" | 
					
						
							|  |  |  |     before_show_menu | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  | remove_iplimit() { | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     echo -e "${green}\t1.${plain} Only remove IP Limit configurations" | 
					
						
							|  |  |  |     echo -e "${green}\t2.${plain} Uninstall Fail2ban and IP Limit" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |     echo -e "${green}\t0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " num | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     case "$num" in | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |     1) | 
					
						
							|  |  |  |         rm -f /etc/fail2ban/filter.d/3x-ipl.conf | 
					
						
							|  |  |  |         rm -f /etc/fail2ban/action.d/3x-ipl.conf | 
					
						
							|  |  |  |         rm -f /etc/fail2ban/jail.d/3x-ipl.conf | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service fail2ban restart | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl restart fail2ban | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         echo -e "${green}IP Limit removed successfully!${plain}\n" | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         rm -rf /etc/fail2ban | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |             rc-service fail2ban stop | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             systemctl stop fail2ban | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         case "${release}" in | 
					
						
							| 
									
										
										
										
											2024-04-01 08:42:28 +00:00
										 |  |  |         ubuntu | debian | armbian) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             apt-get remove -y fail2ban | 
					
						
							|  |  |  |             apt-get purge -y fail2ban -y | 
					
						
							|  |  |  |             apt-get autoremove -y | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-06-19 06:38:24 +00:00
										 |  |  |         centos | rhel | almalinux | rocky | ol) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             yum remove fail2ban -y | 
					
						
							|  |  |  |             yum autoremove -y | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-02-24 08:22:34 +00:00
										 |  |  |         fedora | amzn | virtuozzo) | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |             dnf remove fail2ban -y | 
					
						
							|  |  |  |             dnf autoremove -y | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2024-04-17 06:26:02 +00:00
										 |  |  |         arch | manjaro | parch) | 
					
						
							| 
									
										
										
										
											2024-04-01 08:42:28 +00:00
										 |  |  |             pacman -Rns --noconfirm fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |         alpine) | 
					
						
							|  |  |  |             apk del fail2ban | 
					
						
							|  |  |  |             ;; | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         *) | 
					
						
							|  |  |  |             echo -e "${red}Unsupported operating system. Please uninstall Fail2ban manually.${plain}\n" | 
					
						
							|  |  |  |             exit 1 | 
					
						
							|  |  |  |             ;; | 
					
						
							|  |  |  |         esac | 
					
						
							|  |  |  |         echo -e "${green}Fail2ban and IP Limit removed successfully!${plain}\n" | 
					
						
							|  |  |  |         before_show_menu | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     0) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         show_menu | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     *) | 
					
						
							|  |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         remove_iplimit | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-06-24 20:36:18 +00:00
										 |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							| 
									
										
										
										
											2023-06-08 12:38:08 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  | show_banlog() { | 
					
						
							|  |  |  |     local system_log="/var/log/fail2ban.log" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo -e "${green}Checking ban logs...${plain}\n" | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2025-09-22 19:56:43 +00:00
										 |  |  |     if [[ $release == "alpine" ]]; then | 
					
						
							|  |  |  |         if [[ $(rc-service fail2ban status | grep -F 'status: started' -c) == 0 ]]; then | 
					
						
							|  |  |  |             echo -e "${red}Fail2ban service is not running!${plain}\n" | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         if ! systemctl is-active --quiet fail2ban; then | 
					
						
							|  |  |  |             echo -e "${red}Fail2ban service is not running!${plain}\n" | 
					
						
							|  |  |  |             return 1 | 
					
						
							|  |  |  |         fi | 
					
						
							| 
									
										
										
										
											2025-08-15 11:33:31 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ -f "$system_log" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}Recent system ban activities from fail2ban.log:${plain}" | 
					
						
							|  |  |  |         grep "3x-ipl" "$system_log" | grep -E "Ban|Unban" | tail -n 10 || echo -e "${yellow}No recent system ban activities found${plain}" | 
					
						
							|  |  |  |         echo "" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ -f "${iplimit_banned_log_path}" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}3X-IPL ban log entries:${plain}" | 
					
						
							|  |  |  |         if [[ -s "${iplimit_banned_log_path}" ]]; then | 
					
						
							|  |  |  |             grep -v "INIT" "${iplimit_banned_log_path}" | tail -n 10 || echo -e "${yellow}No ban entries found${plain}" | 
					
						
							|  |  |  |         else | 
					
						
							|  |  |  |             echo -e "${yellow}Ban log file is empty${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     else | 
					
						
							|  |  |  |         echo -e "${red}Ban log file not found at: ${iplimit_banned_log_path}${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo -e "\n${green}Current jail status:${plain}" | 
					
						
							|  |  |  |     fail2ban-client status 3x-ipl || echo -e "${yellow}Unable to get jail status${plain}" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | create_iplimit_jails() { | 
					
						
							|  |  |  |     # Use default bantime if not passed => 30 minutes | 
					
						
							|  |  |  |     local bantime="${1:-30}" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # Uncomment 'allowipv6 = auto' in fail2ban.conf | 
					
						
							|  |  |  |     sed -i 's/#allowipv6 = auto/allowipv6 = auto/g' /etc/fail2ban/fail2ban.conf | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     # On Debian 12+ fail2ban's default backend should be changed to systemd | 
					
						
							|  |  |  |     if [[  "${release}" == "debian" && ${os_version} -ge 12 ]]; then | 
					
						
							|  |  |  |         sed -i '0,/action =/s/backend = auto/backend = systemd/' /etc/fail2ban/jail.conf | 
					
						
							|  |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     cat << EOF > /etc/fail2ban/jail.d/3x-ipl.conf | 
					
						
							|  |  |  | [3x-ipl] | 
					
						
							|  |  |  | enabled=true | 
					
						
							|  |  |  | backend=auto | 
					
						
							|  |  |  | filter=3x-ipl | 
					
						
							|  |  |  | action=3x-ipl | 
					
						
							|  |  |  | logpath=${iplimit_log_path} | 
					
						
							|  |  |  | maxretry=2 | 
					
						
							|  |  |  | findtime=32 | 
					
						
							|  |  |  | bantime=${bantime}m | 
					
						
							|  |  |  | EOF | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     cat << EOF > /etc/fail2ban/filter.d/3x-ipl.conf | 
					
						
							|  |  |  | [Definition] | 
					
						
							|  |  |  | datepattern = ^%%Y/%%m/%%d %%H:%%M:%%S | 
					
						
							|  |  |  | failregex   = \[LIMIT_IP\]\s*Email\s*=\s*<F-USER>.+</F-USER>\s*\|\|\s*SRC\s*=\s*<ADDR> | 
					
						
							|  |  |  | ignoreregex = | 
					
						
							|  |  |  | EOF | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     cat << EOF > /etc/fail2ban/action.d/3x-ipl.conf | 
					
						
							|  |  |  | [INCLUDES] | 
					
						
							|  |  |  | before = iptables-allports.conf | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [Definition] | 
					
						
							|  |  |  | actionstart = <iptables> -N f2b-<name> | 
					
						
							|  |  |  |               <iptables> -A f2b-<name> -j <returntype> | 
					
						
							|  |  |  |               <iptables> -I <chain> -p <protocol> -j f2b-<name> | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | actionstop = <iptables> -D <chain> -p <protocol> -j f2b-<name> | 
					
						
							|  |  |  |              <actionflush> | 
					
						
							|  |  |  |              <iptables> -X f2b-<name> | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | actioncheck = <iptables> -n -L <chain> | grep -q 'f2b-<name>[ \t]' | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | actionban = <iptables> -I f2b-<name> 1 -s <ip> -j <blocktype> | 
					
						
							|  |  |  |             echo "\$(date +"%%Y/%%m/%%d %%H:%%M:%%S")   BAN   [Email] = <F-USER> [IP] = <ip> banned for <bantime> seconds." >> ${iplimit_banned_log_path} | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | actionunban = <iptables> -D f2b-<name> -s <ip> -j <blocktype> | 
					
						
							|  |  |  |               echo "\$(date +"%%Y/%%m/%%d %%H:%%M:%%S")   UNBAN   [Email] = <F-USER> [IP] = <ip> unbanned." >> ${iplimit_banned_log_path} | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | [Init] | 
					
						
							|  |  |  | name = default | 
					
						
							|  |  |  | protocol = tcp | 
					
						
							|  |  |  | chain = INPUT | 
					
						
							|  |  |  | EOF | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     echo -e "${green}Ip Limit jail files created with a bantime of ${bantime} minutes.${plain}" | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | iplimit_remove_conflicts() { | 
					
						
							|  |  |  |     local jail_files=( | 
					
						
							|  |  |  |         /etc/fail2ban/jail.conf | 
					
						
							|  |  |  |         /etc/fail2ban/jail.local | 
					
						
							|  |  |  |     ) | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     for file in "${jail_files[@]}"; do | 
					
						
							|  |  |  |         # Check for [3x-ipl] config in jail file then remove it | 
					
						
							|  |  |  |         if test -f "${file}" && grep -qw '3x-ipl' ${file}; then | 
					
						
							|  |  |  |             sed -i "/\[3x-ipl\]/,/^$/d" ${file} | 
					
						
							|  |  |  |             echo -e "${yellow}Removing conflicts of [3x-ipl] in jail (${file})!${plain}\n" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     done | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  | SSH_port_forwarding() { | 
					
						
							| 
									
										
										
										
											2025-08-21 12:24:25 +00:00
										 |  |  |     local URL_lists=( | 
					
						
							|  |  |  |         "https://api4.ipify.org" | 
					
						
							|  |  |  | 		"https://ipv4.icanhazip.com" | 
					
						
							|  |  |  | 		"https://v4.api.ipinfo.io/ip" | 
					
						
							|  |  |  | 		"https://ipv4.myexternalip.com/raw" | 
					
						
							|  |  |  | 		"https://4.ident.me" | 
					
						
							|  |  |  | 		"https://check-host.net/ip" | 
					
						
							|  |  |  |     ) | 
					
						
							|  |  |  |     local server_ip="" | 
					
						
							|  |  |  |     for ip_address in "${URL_lists[@]}"; do | 
					
						
							|  |  |  |         server_ip=$(curl -s --max-time 3 "${ip_address}" 2>/dev/null | tr -d '[:space:]') | 
					
						
							|  |  |  |         if [[ -n "${server_ip}" ]]; then | 
					
						
							|  |  |  |             break | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |     done | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |     local existing_webBasePath=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'webBasePath: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_port=$(/usr/local/x-ui/x-ui setting -show true | grep -Eo 'port: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_listenIP=$(/usr/local/x-ui/x-ui setting -getListen true | grep -Eo 'listenIP: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_cert=$(/usr/local/x-ui/x-ui setting -getCert true | grep -Eo 'cert: .+' | awk '{print $2}') | 
					
						
							|  |  |  |     local existing_key=$(/usr/local/x-ui/x-ui setting -getCert true | grep -Eo 'key: .+' | awk '{print $2}') | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     local config_listenIP="" | 
					
						
							|  |  |  |     local listen_choice="" | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     if [[ -n "$existing_cert" && -n "$existing_key" ]]; then | 
					
						
							|  |  |  |         echo -e "${green}Panel is secure with SSL.${plain}" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         before_show_menu | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |     if [[ -z "$existing_cert" && -z "$existing_key" && (-z "$existing_listenIP" || "$existing_listenIP" == "0.0.0.0") ]]; then | 
					
						
							|  |  |  |         echo -e "\n${red}Warning: No Cert and Key found! The panel is not secure.${plain}" | 
					
						
							|  |  |  |         echo "Please obtain a certificate or set up SSH port forwarding." | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |     fi | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |     if [[ -n "$existing_listenIP" && "$existing_listenIP" != "0.0.0.0" && (-z "$existing_cert" && -z "$existing_key") ]]; then | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |         echo -e "\n${green}Current SSH Port Forwarding Configuration:${plain}" | 
					
						
							|  |  |  |         echo -e "Standard SSH command:" | 
					
						
							|  |  |  |         echo -e "${yellow}ssh -L 2222:${existing_listenIP}:${existing_port} root@${server_ip}${plain}" | 
					
						
							|  |  |  |         echo -e "\nIf using SSH key:" | 
					
						
							|  |  |  |         echo -e "${yellow}ssh -i <sshkeypath> -L 2222:${existing_listenIP}:${existing_port} root@${server_ip}${plain}" | 
					
						
							|  |  |  |         echo -e "\nAfter connecting, access the panel at:" | 
					
						
							|  |  |  |         echo -e "${yellow}http://localhost:2222${existing_webBasePath}${plain}" | 
					
						
							|  |  |  |     fi | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |     echo -e "\nChoose an option:" | 
					
						
							|  |  |  |     echo -e "${green}1.${plain} Set listen IP" | 
					
						
							|  |  |  |     echo -e "${green}2.${plain} Clear listen IP" | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |     echo -e "${green}0.${plain} Back to Main Menu" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     read -rp "Choose an option: " num | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     case "$num" in | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |     1) | 
					
						
							|  |  |  |         if [[ -z "$existing_listenIP" || "$existing_listenIP" == "0.0.0.0" ]]; then | 
					
						
							|  |  |  |             echo -e "\nNo listenIP configured. Choose an option:" | 
					
						
							|  |  |  |             echo -e "1. Use default IP (127.0.0.1)" | 
					
						
							|  |  |  |             echo -e "2. Set a custom IP" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             read -rp "Select an option (1 or 2): " listen_choice | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |             config_listenIP="127.0.0.1" | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |             [[ "$listen_choice" == "2" ]] && read -rp "Enter custom IP to listen on: " config_listenIP | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |             /usr/local/x-ui/x-ui setting -listenIP "${config_listenIP}" >/dev/null 2>&1 | 
					
						
							|  |  |  |             echo -e "${green}listen IP has been set to ${config_listenIP}.${plain}" | 
					
						
							|  |  |  |             echo -e "\n${green}SSH Port Forwarding Configuration:${plain}" | 
					
						
							|  |  |  |             echo -e "Standard SSH command:" | 
					
						
							|  |  |  |             echo -e "${yellow}ssh -L 2222:${config_listenIP}:${existing_port} root@${server_ip}${plain}" | 
					
						
							|  |  |  |             echo -e "\nIf using SSH key:" | 
					
						
							|  |  |  |             echo -e "${yellow}ssh -i <sshkeypath> -L 2222:${config_listenIP}:${existing_port} root@${server_ip}${plain}" | 
					
						
							|  |  |  |             echo -e "\nAfter connecting, access the panel at:" | 
					
						
							|  |  |  |             echo -e "${yellow}http://localhost:2222${existing_webBasePath}${plain}" | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |             restart | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |         else | 
					
						
							|  |  |  |             config_listenIP="${existing_listenIP}" | 
					
						
							|  |  |  |             echo -e "${green}Current listen IP is already set to ${config_listenIP}.${plain}" | 
					
						
							|  |  |  |         fi | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         /usr/local/x-ui/x-ui setting -listenIP 0.0.0.0 >/dev/null 2>&1 | 
					
						
							|  |  |  |         echo -e "${green}Listen IP has been cleared.${plain}" | 
					
						
							|  |  |  |         restart | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     0) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         show_menu | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-11-04 09:33:07 +00:00
										 |  |  |         echo -e "${red}Invalid option. Please select a valid number.${plain}\n" | 
					
						
							|  |  |  |         SSH_port_forwarding | 
					
						
							| 
									
										
										
										
											2024-10-31 13:43:30 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | show_usage() { | 
					
						
							| 
									
										
										
										
											2024-12-20 18:04:34 +00:00
										 |  |  |     echo -e "┌───────────────────────────────────────────────────────┐
 | 
					
						
							|  |  |  | │  ${blue}x-ui control menu usages (subcommands):${plain}              │ | 
					
						
							|  |  |  | │                                                       │ | 
					
						
							|  |  |  | │  ${blue}x-ui${plain}              - Admin Management Script          │ | 
					
						
							|  |  |  | │  ${blue}x-ui start${plain}        - Start                            │ | 
					
						
							|  |  |  | │  ${blue}x-ui stop${plain}         - Stop                             │ | 
					
						
							|  |  |  | │  ${blue}x-ui restart${plain}      - Restart                          │ | 
					
						
							|  |  |  | │  ${blue}x-ui status${plain}       - Current Status                   │ | 
					
						
							|  |  |  | │  ${blue}x-ui settings${plain}     - Current Settings                 │ | 
					
						
							|  |  |  | │  ${blue}x-ui enable${plain}       - Enable Autostart on OS Startup   │ | 
					
						
							|  |  |  | │  ${blue}x-ui disable${plain}      - Disable Autostart on OS Startup  │ | 
					
						
							|  |  |  | │  ${blue}x-ui log${plain}          - Check logs                       │ | 
					
						
							|  |  |  | │  ${blue}x-ui banlog${plain}       - Check Fail2ban ban logs          │ | 
					
						
							|  |  |  | │  ${blue}x-ui update${plain}       - Update                           │ | 
					
						
							|  |  |  | │  ${blue}x-ui legacy${plain}       - legacy version                   │ | 
					
						
							|  |  |  | │  ${blue}x-ui install${plain}      - Install                          │ | 
					
						
							|  |  |  | │  ${blue}x-ui uninstall${plain}    - Uninstall                        │ | 
					
						
							|  |  |  | └───────────────────────────────────────────────────────┘"
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | show_menu() { | 
					
						
							|  |  |  |     echo -e "
 | 
					
						
							| 
									
										
										
										
											2024-12-20 17:33:27 +00:00
										 |  |  | ╔────────────────────────────────────────────────╗ | 
					
						
							|  |  |  | │   ${green}3X-UI Panel Management Script${plain}                │ | 
					
						
							|  |  |  | │   ${green}0.${plain} Exit Script                               │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							|  |  |  | │   ${green}1.${plain} Install                                   │ | 
					
						
							|  |  |  | │   ${green}2.${plain} Update                                    │ | 
					
						
							|  |  |  | │   ${green}3.${plain} Update Menu                               │ | 
					
						
							|  |  |  | │   ${green}4.${plain} Legacy Version                            │ | 
					
						
							|  |  |  | │   ${green}5.${plain} Uninstall                                 │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							| 
									
										
										
										
											2025-05-08 14:20:58 +00:00
										 |  |  | │   ${green}6.${plain} Reset Username & Password                 │ | 
					
						
							| 
									
										
										
										
											2024-12-20 17:33:27 +00:00
										 |  |  | │   ${green}7.${plain} Reset Web Base Path                       │ | 
					
						
							|  |  |  | │   ${green}8.${plain} Reset Settings                            │ | 
					
						
							|  |  |  | │   ${green}9.${plain} Change Port                               │ | 
					
						
							|  |  |  | │  ${green}10.${plain} View Current Settings                     │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							|  |  |  | │  ${green}11.${plain} Start                                     │ | 
					
						
							|  |  |  | │  ${green}12.${plain} Stop                                      │ | 
					
						
							|  |  |  | │  ${green}13.${plain} Restart                                   │ | 
					
						
							|  |  |  | │  ${green}14.${plain} Check Status                              │ | 
					
						
							|  |  |  | │  ${green}15.${plain} Logs Management                           │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							|  |  |  | │  ${green}16.${plain} Enable Autostart                          │ | 
					
						
							|  |  |  | │  ${green}17.${plain} Disable Autostart                         │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							|  |  |  | │  ${green}18.${plain} SSL Certificate Management                │ | 
					
						
							|  |  |  | │  ${green}19.${plain} Cloudflare SSL Certificate                │ | 
					
						
							|  |  |  | │  ${green}20.${plain} IP Limit Management                       │ | 
					
						
							|  |  |  | │  ${green}21.${plain} Firewall Management                       │ | 
					
						
							|  |  |  | │  ${green}22.${plain} SSH Port Forwarding Management            │ | 
					
						
							|  |  |  | │────────────────────────────────────────────────│ | 
					
						
							|  |  |  | │  ${green}23.${plain} Enable BBR                                │ | 
					
						
							|  |  |  | │  ${green}24.${plain} Update Geo Files                          │ | 
					
						
							|  |  |  | │  ${green}25.${plain} Speedtest by Ookla                        │ | 
					
						
							|  |  |  | ╚────────────────────────────────────────────────╝ | 
					
						
							| 
									
										
										
										
											2023-07-01 12:26:43 +00:00
										 |  |  | "
 | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     show_status | 
					
						
							| 
									
										
										
										
											2025-04-09 05:40:38 +00:00
										 |  |  |     echo && read -rp "Please enter your selection [0-25]: " num | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  |     case "${num}" in | 
					
						
							|  |  |  |     0) | 
					
						
							|  |  |  |         exit 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     1) | 
					
						
							|  |  |  |         check_uninstall && install | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     2) | 
					
						
							|  |  |  |         check_install && update | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     3) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && update_menu | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     4) | 
					
						
							| 
									
										
										
										
											2024-10-31 00:18:37 +00:00
										 |  |  |         check_install && legacy_version | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     5) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && uninstall | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     6) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && reset_user | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     7) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && reset_webbasepath | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     8) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && reset_config | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     9) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && set_port | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     10) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && check_config | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     11) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && start | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     12) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && stop | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     13) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && restart | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     14) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && status | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     15) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && show_log | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     16) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && enable | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  |     17) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         check_install && disable | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     18) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         ssl_cert_issue_main | 
					
						
							| 
									
										
										
										
											2023-04-02 14:42:00 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-04-03 15:52:23 +00:00
										 |  |  |     19) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         ssl_cert_issue_CF | 
					
						
							| 
									
										
										
										
											2023-04-03 15:52:23 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-05-13 15:36:16 +00:00
										 |  |  |     20) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         iplimit_main | 
					
						
							| 
									
										
										
										
											2023-08-08 21:22:40 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-01-27 09:26:10 +00:00
										 |  |  |     21) | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         firewall_menu | 
					
						
							| 
									
										
										
										
											2024-01-01 20:09:21 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-09-09 07:48:48 +00:00
										 |  |  |     22) | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |         SSH_port_forwarding | 
					
						
							| 
									
										
										
										
											2024-06-24 12:43:39 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-09-09 07:48:48 +00:00
										 |  |  |     23) | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |         bbr_menu | 
					
						
							| 
									
										
										
										
											2024-06-24 13:22:05 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-09-09 07:48:48 +00:00
										 |  |  |     24) | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |         update_geo | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     25) | 
					
						
							| 
									
										
										
										
											2023-06-24 21:37:34 +00:00
										 |  |  |         run_speedtest | 
					
						
							| 
									
										
										
										
											2024-01-20 13:58:44 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     *) | 
					
						
							| 
									
										
										
										
											2024-10-31 08:53:47 +00:00
										 |  |  |         LOGE "Please enter the correct number [0-25]" | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |         ;; | 
					
						
							|  |  |  |     esac | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | if [[ $# > 0 ]]; then | 
					
						
							|  |  |  |     case $1 in | 
					
						
							|  |  |  |     "start") | 
					
						
							|  |  |  |         check_install 0 && start 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "stop") | 
					
						
							|  |  |  |         check_install 0 && stop 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "restart") | 
					
						
							|  |  |  |         check_install 0 && restart 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "status") | 
					
						
							|  |  |  |         check_install 0 && status 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-06-24 11:47:13 +00:00
										 |  |  |     "settings") | 
					
						
							|  |  |  |         check_install 0 && check_config 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     "enable") | 
					
						
							|  |  |  |         check_install 0 && enable 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "disable") | 
					
						
							|  |  |  |         check_install 0 && disable 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "log") | 
					
						
							|  |  |  |         check_install 0 && show_log 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-09-04 23:50:09 +00:00
										 |  |  |     "banlog") | 
					
						
							|  |  |  |         check_install 0 && show_banlog 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     "update") | 
					
						
							|  |  |  |         check_install 0 && update 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2024-10-31 00:18:37 +00:00
										 |  |  |     "legacy") | 
					
						
							|  |  |  |         check_install 0 && legacy_version 0 | 
					
						
							| 
									
										
										
										
											2024-06-24 11:47:13 +00:00
										 |  |  |         ;; | 
					
						
							| 
									
										
										
										
											2023-02-09 19:18:06 +00:00
										 |  |  |     "install") | 
					
						
							|  |  |  |         check_uninstall 0 && install 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     "uninstall") | 
					
						
							|  |  |  |         check_install 0 && uninstall 0 | 
					
						
							|  |  |  |         ;; | 
					
						
							|  |  |  |     *) show_usage ;; | 
					
						
							|  |  |  |     esac | 
					
						
							|  |  |  | else | 
					
						
							|  |  |  |     show_menu | 
					
						
							| 
									
										
										
										
											2025-02-04 10:27:58 +00:00
										 |  |  | fi |