su/tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Browse Source
This commit is contained in:
sushen339
2025-11-18 03:40:57 +08:00
parent 39b8594faa
commit 4c268626aa
3 changed files with 135 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
+125
View File
@@ -0,0 +1,125 @@
# 🚀 脚本工具集
常用 Linux/路由器/服务器 Bash 工具脚本,适合自动化、性能优化、代理配置等场景。
---
## 🛠️ 工具与一键命令
### 1. tcp.sh —— TCP 网络优化
优化:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/tcp.sh") 1
```
代理加速:
```bash
bash <(curl -fsSL "https://https://raw.githubusercontent.com/sushen339/tools/main/tcp.sh") 1
```
---
### 2. tproxy.sh —— OpenWrt/路由透明代理自动配置
一键运行:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/tproxy.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/tproxy.sh")
```
---
### 3. mihomo-install.sh —— Mihomo 加速核心一键安装
一键安装:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/mihomo-install.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/mihomo-install.sh")
```
---
### 4. mssh.sh —— 多主机 SSH 管理与端口转发
一键运行:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/mssh.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/mssh.sh")
```
---
### 5. curl-cc.sh —— 模拟浏览器 UA 自动访问签到
一键运行:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/curl-cc.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/curl-cc.sh")
```
---
### 6. AutoUpdateJdCookie.sh —— 京东 Cookie 自动更新工具安装
一键安装:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/AutoUpdateJdCookie_install.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/AutoUpdateJdCookie_install.sh")
```
### 7. nft.sh —— nftables 防火墙规则配置脚本
一键运行:
```bash
bash <(curl -fsSL "https://raw.githubusercontent.com/sushen339/tools/main/nft.sh")
```
代理加速:
```bash
bash <(curl -fsSL "https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/nft.sh")
```
## 8. block-ip.sh —— 基于SSH登陆的IP 封禁脚本
一键运行:
```bash
wget https://raw.githubusercontent.com/sushen339/tools/main/block-ip.sh -O /tmp/block-ip.sh && bash /tmp/block-ip.sh install
```
代理加速:
```bash
wget https://gh-proxy.com/https://raw.githubusercontent.com/sushen339/tools/main/block-ip.sh -O /tmp/block-ip.sh && bash /tmp/block-ip.sh install
```
> 建议所有脚本以 root 权限运行,详细参数和说明请阅读各脚本头部注释。
block-ip.sh
+9 -14
View File
@@ -8,7 +8,6 @@ BAN_TIME="24h"
RECORD_DIR="/tmp/block_ip_counts" RECORD_DIR="/tmp/block_ip_counts"
PERSIST_FILE="/etc/block-ip.list" PERSIST_FILE="/etc/block-ip.list"
COUNTRY_FILE="/etc/block-ip.country"
WHITELIST_FILE="/etc/block-ip.whitelist" WHITELIST_FILE="/etc/block-ip.whitelist"
INSTALL_PATH="/usr/local/bin/block-ip" INSTALL_PATH="/usr/local/bin/block-ip"
NFT_TABLE="inet filter" NFT_TABLE="inet filter"
@@ -140,22 +139,19 @@ ban_ip() {
if [ "$SAVE_DISK" -eq 1 ] && ! is_ipv6 "$BASE_IP" && ! echo "$TARGET_IP" | grep -q '/'; then if [ "$SAVE_DISK" -eq 1 ] && ! is_ipv6 "$BASE_IP" && ! echo "$TARGET_IP" | grep -q '/'; then
if command -v curl >/dev/null 2>&1; then if command -v curl >/dev/null 2>&1; then
COUNTRY_CODE=$(curl -s --max-time 2 "https://ipinfo.io/$BASE_IP/country" 2>/dev/null | tr -d '\n\r ') COUNTRY_CODE=$(curl -s --max-time 2 "https://ipinfo.io/$BASE_IP/country" 2>/dev/null | tr -d '\n\r ')
if [ -n "$COUNTRY_CODE" ] && [ ${#COUNTRY_CODE} -eq 2 ]; then [ -n "$COUNTRY_CODE" ] && [ ${#COUNTRY_CODE} -ne 2 ] && COUNTRY_CODE=""
# 检查是否已存在记录
if ! grep -q "^$BASE_IP|" "$COUNTRY_FILE" 2>/dev/null; then
echo "$BASE_IP|$COUNTRY_CODE" >> "$COUNTRY_FILE"
fi
fi
fi fi
fi fi
if [ "$SAVE_DISK" -eq 1 ]; then if [ "$SAVE_DISK" -eq 1 ]; then
if ! grep -q "^$TARGET_IP$" "$PERSIST_FILE" 2>/dev/null; then # 检查是否已存在(支持带国家代码的格式)
echo "$TARGET_IP" >> "$PERSIST_FILE" if ! grep -qE "^$TARGET_IP(\||$)" "$PERSIST_FILE" 2>/dev/null; then
if [ -n "$COUNTRY_CODE" ]; then if [ -n "$COUNTRY_CODE" ]; then
echo "$TARGET_IP|$COUNTRY_CODE" >> "$PERSIST_FILE"
COUNTRY_NAME=$(get_country_name "$COUNTRY_CODE") COUNTRY_NAME=$(get_country_name "$COUNTRY_CODE")
log "[执行封禁] IP=$TARGET_IP 国家=$COUNTRY_NAME 已封禁" log "[执行封禁] IP=$TARGET_IP 国家=$COUNTRY_NAME 已封禁"
else else
echo "$TARGET_IP" >> "$PERSIST_FILE"
log "[执行封禁] IP=$TARGET_IP 已封禁" log "[执行封禁] IP=$TARGET_IP 已封禁"
fi fi
fi fi
@@ -367,7 +363,7 @@ do_show() {
printf "%b%-45s%b\n" "$C_YELLOW" "IP 地址" "$C_RESET" printf "%b%-45s%b\n" "$C_YELLOW" "IP 地址" "$C_RESET"
echo "---------------------------------------------" echo "---------------------------------------------"
awk '{printf "%-45s\n", $1}' "$PERSIST_FILE" awk -F'|' '{printf "%-45s\n", $1}' "$PERSIST_FILE"
echo "" echo ""
msg "$C_CYAN" "📌 文件位置: $PERSIST_FILE" msg "$C_CYAN" "📌 文件位置: $PERSIST_FILE"
@@ -516,11 +512,11 @@ do_del() {
nft delete element $NFT_TABLE $NFT_SET "{ $DEL_ELEMENT }" >/dev/null 2>&1 nft delete element $NFT_TABLE $NFT_SET "{ $DEL_ELEMENT }" >/dev/null 2>&1
fi fi
# 从持久化文件删除(支持原始输入格式) # 从持久化文件删除(支持带国家代码的格式)
if [ -f "$PERSIST_FILE" ]; then if [ -f "$PERSIST_FILE" ]; then
# 转义特殊字符用于sed # 转义特殊字符用于sed
ESCAPED=$(echo "$INPUT" | sed 's/[.[\/]/\\&/g') ESCAPED=$(echo "$INPUT" | sed 's/[.[\/]/\\&/g')
sed -i "/^$ESCAPED$/d" "$PERSIST_FILE" sed -i "/^$ESCAPED\(|.*\)\?$/d" "$PERSIST_FILE"
fi fi
log "[手动解封] IP=$INPUT" log "[手动解封] IP=$INPUT"
@@ -532,7 +528,7 @@ do_restore() {
# 恢复黑名单 # 恢复黑名单
if [ -f "$PERSIST_FILE" ]; then if [ -f "$PERSIST_FILE" ]; then
count=0 count=0
while IFS= read -r ip; do [ -n "$ip" ] && ban_ip "$ip" 2 && count=$((count+1)); done < "$PERSIST_FILE" while IFS='|' read -r ip _; do [ -n "$ip" ] && ban_ip "$ip" 2 && count=$((count+1)); done < "$PERSIST_FILE"
log "[系统恢复] 已从磁盘恢复 $count 个黑名单 IP" log "[系统恢复] 已从磁盘恢复 $count 个黑名单 IP"
msg "$C_GREEN" "✅ 已从磁盘恢复 $count 个黑名单 IP" msg "$C_GREEN" "✅ 已从磁盘恢复 $count 个黑名单 IP"
fi fi
@@ -566,7 +562,6 @@ do_install() {
if [ "$CURRENT" != "$INSTALL_PATH" ]; then cp "$0" "$INSTALL_PATH" && chmod +x "$INSTALL_PATH"; fi if [ "$CURRENT" != "$INSTALL_PATH" ]; then cp "$0" "$INSTALL_PATH" && chmod +x "$INSTALL_PATH"; fi
mkdir -p "$RECORD_DIR" && chmod 700 "$RECORD_DIR" mkdir -p "$RECORD_DIR" && chmod 700 "$RECORD_DIR"
touch "$PERSIST_FILE" && chmod 600 "$PERSIST_FILE" touch "$PERSIST_FILE" && chmod 600 "$PERSIST_FILE"
touch "$COUNTRY_FILE" && chmod 600 "$COUNTRY_FILE"
touch "$LOG_FILE" && chmod 666 "$LOG_FILE" touch "$LOG_FILE" && chmod 666 "$LOG_FILE"
check_and_install_env; init_nft_rules; do_restore check_and_install_env; init_nft_rules; do_restore
PAM_FILE="/etc/pam.d/sshd" PAM_FILE="/etc/pam.d/sshd"
v3.sh → v3.1.sh
+1 -1
View File
@@ -222,7 +222,7 @@ $RAW_V6"
else else
printf "%b%-45s %-15s%b\n" "$C_YELLOW" "IP 地址" "剩余时间" "$C_RESET" printf "%b%-45s %-15s%b\n" "$C_YELLOW" "IP 地址" "剩余时间" "$C_RESET"
echo "--------------------------------------------------------------" echo "--------------------------------------------------------------"
echo "$CLEAN_DATA" | sort -t' ' -k2 | head -n 5 | awk '{printf "%-45s %s\n", $1, $2}' echo "$CLEAN_DATA" | sort -t' ' -k2 | tail -n 5 | awk '{printf "%-45s %s\n", $1, $2}'
[ "$NFT_COUNT" -gt 5 ] && echo "... (还有 $((NFT_COUNT - 5)) 条未显示)" [ "$NFT_COUNT" -gt 5 ] && echo "... (还有 $((NFT_COUNT - 5)) 条未显示)"
fi fi
echo "" echo ""