M_Viper/cloudflare-ddns-updater
M_Viper
/
cloudflare-ddns-updater
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Incorporating feedback 

Changed the way we generate the api data back to the original. Clarified
comments. Added more logic to how we obtain the public IPv4 address,
such that input is sanitized.

If curl is not found, then the rest of the script can't run so we exit
with an error code. We try to use DNS if HTTPS fails to obtain
a valid IP. Added log messages for these events.
This commit is contained in:
9cco 2022-02-26 11:10:26 +01:00
parent ebcc60faa3
commit 6a50f940cb
1 changed files with 17 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
cloudflare-template.sh
View File

@ -17,16 +17,26 @@ slackuri="" # URI for Slack WebHook "http
########################################### ###########################################
## Check if we have a public IP ## Check if we have a public IP
########################################### ###########################################
# Use curl if curl is available # Use curl if curl is installed on the system.
if [[ $(command -v curl &> /dev/null; echo $?) ]]; then if [[ $(command -v curl &> /dev/null; echo $?) ]]; then
ip=$(curl -s https://api.ipify.org || curl -s https://ipv4.icanhazip.com/) ip=$(curl -s https://api.ipify.org || curl -s https://ipv4.icanhazip.com/)
elif [[ $(command -v dig &> /dev/null; echo $?) ]]; then else
ip=$(dig +short myip.opendns.com @resolver1.opendns.com); logger -s "Error: 'curl' was not found on your system. Install it with 'sudo apt install curl' in order to use this script"
exit 1
fi fi
if [[ ! $ip =~ ^([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])$ ]]; then # Use regex to check for proper IPv4 format. Try using 'dig' if curl requests failed.
logger -s "DDNS Updater: Failed to find a valid IP." ipv4_regex='^([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])$'
exit 1 if [[ ! $ip =~ $ipv4_regex ]]; then
logger -s "Warning: Neither 'api.ipify.org' nor 'ipv4.icanhazip.com' were able to obtain your ip-address. Trying to use less secure DNS lookup on 'myip.opendns.com' through 'dig' instead."
if [[ $(command -v dig &> /dev/null; echo $?) ]]; then
ip=$(dig +short myip.opendns.com @resolver1.opendns.com)
fi
# Also sanitize the 'dig' output through the same regex as before.
if [[ ! $ip =~ $ipv4_regex ]]; then
logger -s "DDNS Updater: Failed to find a valid IP."
exit 2
fi
fi fi
########################################### ###########################################
@ -74,21 +84,11 @@ record_identifier=$(echo "$record" | sed -E 's/.*"id":"(\w+)".*/\1/')
########################################### ###########################################
## Change the IP@Cloudflare using the API ## Change the IP@Cloudflare using the API
########################################### ###########################################
api_data=$(cat <<EOF
{
"type":"A",
"name":"$record_name",
"content":"$ip",
"ttl":$ttl,
"proxied":$proxy
}
EOF
)
update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \ update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \
-H "X-Auth-Email: $auth_email" \ -H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \ -H "$auth_header $auth_key" \
-H "Content-Type: application/json" \ -H "Content-Type: application/json" \
--data "$api_data") #"{\"type\":\"A\",\"name\":\"$record_name\",\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":${proxy}}") --data "{\"type\":\"A\",\"name\":\"$record_name\",\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":${proxy}}")
########################################### ###########################################
## Report the status ## Report the status