Create block-ip.php

2026-04-26 01:09:01 -05:00 · 2025-07-28 04:04:08 +02:00
parent 0ee1f97c5d
commit 365b5b8797
1 changed files with 79 additions and 0 deletions
@@ -0,0 +1,79 @@
+<?php
+// includes/block-ip.php
+
+/**
+ * Blocks an IP address using iptables and logs the action into blocklist.json
+ *
+ * @param string $ip        The IP address to block.
+ * @param string $jail      The fail2ban jail or context (optional).
+ * @param string $source    Who triggered the block (e.g. 'manual', 'report', etc.)
+ * @return array            Result array with 'success' and 'message'.
+ */
+function blockIp($ip, $jail = 'unknown', $source = 'manual') {
+    // Validate IP address
+    if (!filter_var($ip, FILTER_VALIDATE_IP)) {
+        return [
+            'success' => false,
+            'message' => "Invalid IP address format: $ip"
+        ];
+    }
+
+    // Check if IP is already blocked (optional enhancement)
+    // system("iptables -C INPUT -s $ip -j DROP 2>/dev/null", $alreadyBlocked);
+    // if ($alreadyBlocked === 0) {
+    //     return [
+    //         'success' => true,
+    //         'message' => "IP $ip is already blocked."
+    //     ];
+    // }
+
+    // Run iptables command
+    $cmd = escapeshellcmd("iptables -A INPUT -s $ip -j DROP");
+    $output = [];
+    $exitCode = 0;
+    exec($cmd, $output, $exitCode);
+
+    if ($exitCode !== 0) {
+        return [
+            'success' => false,
+            'message' => "Failed to block IP $ip via iptables."
+        ];
+    }
+
+    // Prepare JSON archive entry
+    $entry = [
+        'ip' => $ip,
+        'jail' => $jail,
+        'source' => $source,
+        'timestamp' => date('c') // ISO 8601 format
+    ];
+
+    $jsonFile = __DIR__ . '/archive/blocklist.json';
+    $data = [];
+
+    if (file_exists($jsonFile)) {
+        $existing = file_get_contents($jsonFile);
+        $data = json_decode($existing, true);
+        if (!is_array($data)) {
+            $data = []; // fallback on corruption
+        }
+    }
+
+    // Avoid duplicates
+    foreach ($data as $item) {
+        if ($item['ip'] === $ip) {
+            return [
+                'success' => true,
+                'message' => "IP $ip was already listed in blocklist.json."
+            ];
+        }
+    }
+
+    $data[] = $entry;
+    file_put_contents($jsonFile, json_encode($data, JSON_PRETTY_PRINT | JSON_UNESCAPED_SLASHES));
+
+    return [
+        'success' => true,
+        'message' => "IP $ip was successfully blocked and logged."
+    ];
+}