update

docker/docker-compose.yml

@@ -0,0 +1,58 @@
+networks:
+  wafnet:
+    name: wafnet
+    driver: bridge
+    ipam:
+      driver: default
+      config:
+      - gateway: 172.31.255.1
+        subnet: 172.31.255.0/24
+    driver_opts:
+      com.docker.network.bridge.name: wafnet
+
+services:
+  uuwaf:
+   image: uusec/nanqiang:latest
+   ulimits:
+     nproc: 65535
+     nofile:
+       soft: 102400
+       hard: 102400
+   container_name: uuwaf
+   restart: always
+   networks:
+      wafnet:
+   ports:
+     - "80:80"
+     - "443:443"
+     - "4443:4443"
+   volumes:
+     - wafshared:/uuwaf
+   command: ["/run.sh"]
+   environment:
+     - TZ=Asia/Shanghai
+     - UUWAF_MYSQL_PASSWORD=Safe3.WAF
+
+   links:
+   - wafdb
+   depends_on:
+      - wafdb
+
+  wafdb:
+   image: percona/percona-server:5.7
+   container_name: wafdb
+   restart: always
+   networks:
+      wafnet:
+   volumes:
+     - wafshared:/docker-entrypoint-initdb.d
+     - wafdata:/var/lib/mysql
+   environment:
+     - TZ=Asia/Shanghai
+     - INIT_ROCKSDB
+     - MYSQL_MAX_CONNECTIONS=512
+     - MYSQL_ROOT_PASSWORD=Safe3.WAF
+
+volumes:
+  wafshared:
+  wafdata:

docker/readme.txt

@@ -0,0 +1,15 @@
+����Ҫ��
+docker�汾1.20����
+
+��ѹ��ǽ��װ����
+tar zxvf waf.tgz && cd waf
+
+��ǽDocker������ִ�����������������ʾ������ǽdocker����
+sh uuwaf.sh
+
+�������ţ�
+1����¼��̨������https://wafip:4443��wafipΪ��װ��ǽ�ķ�����ip���û���admin������wafadmin
+2������վ�㣬����վ������˵����������վ�㰴ť������ʾ����վ����������վ������ip
+3������֤�飬����֤������˵����������֤�鰴ť���ϴ��ڶ�����������https֤���˽Կ�ļ�
+4��������DNS��ipָ���Ϊ��ǽ������ip��ַ
+5������վ�������鿴��վ�Ƿ��ܹ�����

docker/uuwaf.sh

@@ -0,0 +1,131 @@
+#!/bin/bash
+
+abort() {
+	echo -e "\033[31m[南墙] $*\033[0m"
+	exit 1
+}
+
+if [ -z "$BASH" ]; then
+	abort "请用 bash 执行本脚本，参考最新的官方技术文档 https://waf.uusec.com/"
+fi
+
+if [ "$EUID" -ne "0" ]; then
+	abort "请以 root 权限运行"
+fi
+
+cat /proc/cpuinfo | grep ssse3 > /dev/null 2>&1
+if [ $? -ne "0" ]; then
+	abort "需要运行在支持 x86-64-v2 的 CPU 上，请开启对应CPU指令集的支持"
+fi
+
+if [ ! $(command -v docker) ]; then
+	curl -sSLk https://get.docker.com/ | bash
+	if [ $? -ne "0" ]; then
+		abort "自动安装Docker运行环境失败，请按照https://docs.docker.com/engine/install/指引手工安装Docker"
+	fi
+	systemctl start docker && systemctl enable docker
+fi
+
+DC_CMD="docker compose"
+$DC_CMD version > /dev/null 2>&1
+if [ $? -ne "0" ]; then
+	DC_CMD="docker-compose"
+	if [ ! $(command -v docker-compose) ]; then
+		abort "未发现docker compose命令，请安装Docker Compose插件"
+	fi
+fi
+
+SCRIPT_PATH="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+cd  "$SCRIPT_PATH"
+
+
+stop_uuwaf(){
+	$DC_CMD down
+}
+
+uninstall_uuwaf(){
+	stop_uuwaf
+	docker rm -f uuwaf wafdb > /dev/null 2>&1
+	docker network rm wafnet > /dev/null 2>&1
+	docker images|grep nanqiang|awk '{print $3}'|xargs docker rmi -f
+	docker volume ls|grep wafshared|awk '{print $2}'|xargs docker volume rm -f
+}
+
+start_uuwaf(){
+	if [ $(command -v netstat) ]; then
+		port_status=`netstat -nlt|grep -E ':(80|443|4443)\s'|wc -l`
+		if [ $port_status -gt 0 ]; then
+			echo -e "\t 端口80、443、4443中的一个或多个被占用，请关闭对应服务或修改其端口"
+			exit 1
+		fi
+	fi
+	$DC_CMD up -d
+}
+
+update_uuwaf(){
+	uninstall_uuwaf
+	start_uuwaf
+}
+
+restart_uuwaf(){
+	stop_uuwaf
+	start_uuwaf
+}
+
+clean_uuwaf(){
+	docker system prune -a -f
+	docker volume prune -a -f
+}
+
+start_menu(){
+    clear
+    echo "========================="
+    echo "南墙Docker管理"
+    echo "========================="
+    echo "1. 启动"
+    echo "2. 停止"
+    echo "3. 重启"
+    echo "4. 更新"
+    echo "5. 卸载"
+    echo "6. 清理"
+    echo "7. 退出"
+    echo
+    read -p "请输入数字:" num
+    case "$num" in
+    	1)
+	start_uuwaf
+	echo "启动完成"
+	;;
+	2)
+	stop_uuwaf
+	echo "停止完成"
+	;;
+    	3)
+	restart_uuwaf
+	echo "重启完成"
+	;;
+	4)
+	update_uuwaf
+	echo "更新完成"
+	;;
+	5)
+	uninstall_uuwaf
+	echo "卸载完成"
+	;;
+	6)
+	clean_uuwaf
+	echo "清理完成"
+	;;
+	7)
+	exit 1
+	;;
+	*)
+	clear
+	echo "请输入正确数字"
+	;;
+    esac
+    sleep 3s
+    start_menu
+}
+
+start_menu