pob
/
cloudflare
mirror of https://github.com/K0p1-Git/cloudflare-ddns-updater
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge b0792f1cff into ac2f74f980

Browse Source
pull/77/merge
Rui 1 year ago committed by GitHub
parent ac2f74f980 b0792f1cff
commit 01dd96134b
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
5 changed files with 525 additions and 288 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 77
      README.md
  2. 290
      cloudflare-template.sh
  3. 392
      cloudflare-templatev6.sh
  4. 11
      config4.ini
  5. 43
      config6.ini

77
README.md
Unescape View File

@ -6,6 +6,21 @@ This script is used to update Dynamic DNS (DDNS) service based on Cloudflare! Ac
## Support Me ## Support Me
[![Donate Via Paypal](https://www.paypalobjects.com/en_US/i/btn/btn_donateCC_LG.gif)](https://www.paypal.me/Jasonkkf) [![Donate Via Paypal](https://www.paypalobjects.com/en_US/i/btn/btn_donateCC_LG.gif)](https://www.paypal.me/Jasonkkf)
## Table of Contents
- [Cloudflare Dynamic DNS IP Updater](#cloudflare-dynamic-dns-ip-updater)
* [Support Me](#support-me)
* [Table of Contents](#table-of-contents)
* [Installation](#installation)
* [Usage](#usage)
+ [Local variables](#local-variables)
+ [Configuration file](#configuration-file)
+ [Pass](#pass)
* [Tested Environments:](#tested-environments)
* [Contributing](#contributing)
* [Reference](#reference)
* [License](#license)
## Installation ## Installation
```bash ```bash
@ -27,6 +42,68 @@ This script is used with crontab. Specify the frequency of execution through cro
# * * * * * /bin/bash {Location of the script} # * * * * * /bin/bash {Location of the script}
``` ```
### Local variables
If you want to use your variables inside the script fill the script with them and execute it like the following example:
```bash
./cloudflare-template.sh local
```
### Configuration file
If you want to use the configuration file to store your credentials execute the following commands:
```bash
mkdir -p ~/.cloudflare
cp config.ini ~/.cloudflare/config.ini
./cloudflare-template.sh file
```
### Pass
If you want to use [Pass](https://www.passwordstore.org/) you can execute the following commands:
```bash
gpg --batch --passphrase '' --quick-gen-key USER_ID default default
```
Get key:
```bash
gpg2 --list-secret-keys --keyid-format LONG
sec 4096R/AAAA2222CCCC4444 2021-03-18 [expires: 2023-03-18] uid John Doe <jdoe@example.com>
```
Init pass:
```bash
pass init 'AAAA2222CCCC4444'
```
Execute:
```bash
pass insert -m credentials/cloudflare
```
Add your variables:
```text
auth_email="" # The email used to login 'https://dash.cloudflare.com'
auth_method="" # Set to "global" for Global API Key or "token" for Scoped API Token
auth_key="" # Your API Token or Global API Key
zone_identifier="" # Can be found in the "Overview" tab of your domain
record_name="" # Which record you want to be synced
ttl="3600" # Set the DNS TTL (seconds)
proxy="false" # Set the proxy to true or false
sitename="" # Title of site "Example Site"
slackchannel="" # Slack Channel #example
slackuri="" # URI for Slack WebHook "https://hooks.slack.com/services/xxxxx"
discorduri="" # URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx"
```
## Tested Environments: ## Tested Environments:
macOS Mojave version 10.14.6 (x86_64) <br /> macOS Mojave version 10.14.6 (x86_64) <br />
AlmaLinux 9.3 (Linux kernel: 5.14.0 | x86_64) <br /> AlmaLinux 9.3 (Linux kernel: 5.14.0 | x86_64) <br />

290
cloudflare-template.sh
Unescape View File

@ -1,123 +1,183 @@
#!/bin/bash #!/bin/bash
## change to "bin/sh" when necessary ## change to "bin/sh" when necessary
auth_email="" # The email used to login 'https://dash.cloudflare.com' # display_help function: Displays the usage instructions for the script.
auth_method="token" # Set to "global" for Global API Key or "token" for Scoped API Token display_help(){
auth_key="" # Your API Token or Global API Key logger "Usage: $0 [local|file|pass]"
zone_identifier="" # Can be found in the "Overview" tab of your domain logger " local - Load variables from this script"
record_name="" # Which record you want to be synced logger " file - Load variables from a file"
ttl="3600" # Set the DNS TTL (seconds) logger " pass - Load variables from pass"
proxy="false" # Set the proxy to true or false }
sitename="" # Title of site "Example Site"
slackchannel="" # Slack Channel #example # load_variables function: Loads the required variables based on the input option.
slackuri="" # URI for Slack WebHook "https://hooks.slack.com/services/xxxxx" load_variables(){
discorduri="" # URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx" case "$1" in
"local")
# Load variables from this script
########################################### auth_email="" # The email used to login 'https://dash.cloudflare.com'
## Check if we have a public IP auth_method="" # Set to "global" for Global API Key or "token" for Scoped API Token
########################################### auth_key="" # Your API Token or Global API Key
ipv4_regex='([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])' zone_identifier="" # Can be found in the "Overview" tab of your domain
ip=$(curl -s -4 https://cloudflare.com/cdn-cgi/trace | grep -E '^ip'); ret=$? record_name="" # Which record you want to be synced
if [[ ! $ret == 0 ]]; then # In the case that cloudflare failed to return an ip. ttl="3600" # Set the DNS TTL (seconds)
# Attempt to get the ip from other websites. proxy="false" # Set the proxy to true or false
sitename="" # Title of site "Example Site"
slackchannel="" # Slack Channel #example
slackuri="" # URI for Slack WebHook "https://hooks.slack.com/services/xxxxx"
discorduri="" # URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx"
;;
"file")
# Load variables from file
CONFIG_FILE="$HOME/.cloudflare/config4.ini"
# Check if the configuration file exists
if [ -f "$CONFIG_FILE" ]; then
# Load configuration from the file
source "$CONFIG_FILE"
else
logger "Error: Configuration file '$CONFIG_FILE' not found."
exit 1
fi
;;
"pass")
# Load variables from pass
source <(pass credentials/cloudflare)
;;
*)
logger "Invalid load_variables option"
exit 1
;;
esac
}
# validate_variables function: Validates the required variables.
validate_variables(){
# Validate required variables
if [[ -z $auth_email || -z $auth_key || -z $zone_identifier || -z $record_name ]]; then
logger "Missing required variables. Please provide values for 'auth_email', 'auth_key', 'zone_identifier', and 'record_name'."
exit 1
fi
}
# check_ipv4_is_available function: Checks if IPv4 is available and retrieves the IP address.
check_ipv4_is_available(){
ipv4_regex='([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])\.([01]?[0-9]?[0-9]|2[0-4][0-9]|25[0-5])'
ip=$(curl -s -4 https://cloudflare.com/cdn-cgi/trace | grep -E '^ip=' | cut -d '=' -f 2)
if [[ -z $ip ]]; then
# Cloudflare did not return an IP, try other sources.
ip=$(curl -s https://api.ipify.org || curl -s https://ipv4.icanhazip.com) ip=$(curl -s https://api.ipify.org || curl -s https://ipv4.icanhazip.com)
else else
# Extract just the ip from the ip line from cloudflare. # Use regex to check for proper IPv4 format.
ip=$(echo $ip | sed -E "s/^ip=($ipv4_regex)$/\1/") if [[ ! $ip =~ ^$ipv4_regex$ ]]; then
fi logger -s "DDNS Updater: Failed to find a valid IP from Cloudflare."
exit 1
# Use regex to check for proper IPv4 format. fi
if [[ ! $ip =~ ^$ipv4_regex$ ]]; then
logger -s "DDNS Updater: Failed to find a valid IP."
exit 2
fi
###########################################
## Check and set the proper auth header
###########################################
if [[ "${auth_method}" == "global" ]]; then
auth_header="X-Auth-Key:"
else
auth_header="Authorization: Bearer"
fi
###########################################
## Seek for the A record
###########################################
logger "DDNS Updater: Check Initiated"
record=$(curl -s -X GET "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records?type=A&name=$record_name" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json")
###########################################
## Check if the domain has an A record
###########################################
if [[ $record == *"\"count\":0"* ]]; then
logger -s "DDNS Updater: Record does not exist, perhaps create one first? (${ip} for ${record_name})"
exit 1
fi
###########################################
## Get existing IP
###########################################
old_ip=$(echo "$record" | sed -E 's/.*"content":"(([0-9]{1,3}\.){3}[0-9]{1,3})".*/\1/')
# Compare if they're the same
if [[ $ip == $old_ip ]]; then
logger "DDNS Updater: IP ($ip) for ${record_name} has not changed."
exit 0
fi
###########################################
## Set the record identifier from result
###########################################
record_identifier=$(echo "$record" | sed -E 's/.*"id":"([A-Za-z0-9_]+)".*/\1/')
###########################################
## Change the IP@Cloudflare using the API
###########################################
update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json" \
--data "{\"type\":\"A\",\"name\":\"$record_name\",\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":${proxy}}")
###########################################
## Report the status
###########################################
case "$update" in
*"\"success\":false"*)
echo -e "DDNS Updater: $ip $record_name DDNS failed for $record_identifier ($ip). DUMPING RESULTS:\n$update" | logger -s
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw '{
"channel": "'$slackchannel'",
"text" : "'"$sitename"' DDNS Update Failed: '$record_name': '$record_identifier' ('$ip')."
}'
fi fi
if [[ $discorduri != "" ]]; then }
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw '{ # set_auth_headers function: Sets the authentication headers based on the authentication method.
"content" : "'"$sitename"' DDNS Update Failed: '$record_name': '$record_identifier' ('$ip')." set_auth_headers(){
}' $discorduri if [[ "${auth_method}" == "global" ]]; then
auth_header="X-Auth-Key:"
else
auth_header="Authorization: Bearer"
fi fi
exit 1;; }
*)
logger "DDNS Updater: $ip $record_name DDNS updated." # check_if_a_record_exists function: Checks if the DNS record exists in Cloudflare.
if [[ $slackuri != "" ]]; then check_if_a_record_exists(){
curl -L -X POST $slackuri \ logger "DDNS Updater: Check Initiated"
--data-raw '{ record=$(curl -s -X GET "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records?type=A&name=$record_name" \
"channel": "'$slackchannel'", -H "X-Auth-Email: $auth_email" \
"text" : "'"$sitename"' Updated: '$record_name''"'"'s'""' new IP Address is '$ip'" -H "$auth_header $auth_key" \
}' -H "Content-Type: application/json")
if [[ $record == *"\"count\":0"* ]]; then
logger -s "DDNS Updater: Record does not exist, perhaps create one first? (${ip} for ${record_name})"
exit 1
fi fi
if [[ $discorduri != "" ]]; then }
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw '{ # get_current_ip_from_cloudflare function: Retrieves the current IP address from Cloudflare.
"content" : "'"$sitename"' Updated: '$record_name''"'"'s'""' new IP Address is '$ip'" get_current_ip_from_cloudflare(){
}' $discorduri old_ip=$(logger "$record" | sed -E 's/.*"content":"(([0-9]{1,3}\.){3}[0-9]{1,3})".*/\1/')
# Compare if they're the same
if [[ $ip == $old_ip ]]; then
logger "DDNS Updater: IP ($ip) for ${record_name} has not changed."
exit 0
fi fi
exit 0;; }
esac
# update_ip_on_cloudflare function: Updates the IP address on Cloudflare.
update_ip_on_cloudflare(){
record_identifier=$(logger "$record" | sed -E 's/.*"id":"([A-Za-z0-9_]+)".*/\1/')
update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json" \
--data "{\"type\":\"A\",\"name\":\"$record_name\",\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":${proxy}}")
}
# send_webhooks function: Sends webhooks to Slack and Discord.
send_webhooks(){
case "$update" in
*"\"success\":false"*)
logger -e "DDNS Updater: $ip $record_name DDNS failed for $record_identifier ($ip). DUMPING RESULTS:\n$update" | logger -s
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw '{
"channel": "'$slackchannel'",
"text" : "'"$sitename"' DDNS Update Failed: '$record_name': '$record_identifier' ('$ip')."
}'
fi
if [[ $discorduri != "" ]]; then
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw '{
"content" : "'"$sitename"' DDNS Update Failed: '$record_name': '$record_identifier' ('$ip')."
}' $discorduri
fi
exit 1;;
*)
logger "DDNS Updater: $ip $record_name DDNS updated."
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw '{
"channel": "'$slackchannel'",
"text" : "'"$sitename"' Updated: '$record_name''"'"'s'""' new IP Address is '$ip'"
}'
fi
if [[ $discorduri != "" ]]; then
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw '{
"content" : "'"$sitename"' Updated: '$record_name''"'"'s'""' new IP Address is '$ip'"
}' $discorduri
fi
exit 0;;
esac
}
# main function: Entry point of the script.
main(){
validate_variables
check_ipv4_is_available
set_auth_headers
check_if_a_record_exists
get_current_ip_from_cloudflare
update_ip_on_cloudflare
send_webhooks
}
# switch for environment variables loading
case "$1" in
"local"|"file"|"pass")
load_variables "$1"
main
;;
*)
display_help
exit 1
;;
esac

392
cloudflare-templatev6.sh
Unescape View File

@ -1,186 +1,232 @@
#!/bin/bash #!/bin/bash
## change to "bin/sh" when necessary ## change to "bin/sh" when necessary
############## CLOUDFLARE CREDENTIALS ############## display_help(){
# @auth_email - The email used to login 'https://dash.cloudflare.com' logger "Usage: $0 [local|file|pass]"
# @auth_method - Set to "global" for Global API Key or "token" for Scoped API Token logger " local - Load variables from this script"
# @auth_key - Your API Token or Global API Key logger " file - Load variables from a file"
# @zone_identifier - Can be found in the "Overview" tab of your domain logger " pass - Load variables from pass"
# -------------------------------------------------- # }
auth_email=""
auth_method="token" load_variables(){
auth_key="" case "$1" in
zone_identifier="" "local")
############## CLOUDFLARE CREDENTIALS ##############
############# DNS RECORD CONFIGURATION ############# # @auth_email - The email used to login 'https://dash.cloudflare.com'
# @record_name - Which record you want to be synced # @auth_method - Set to "global" for Global API Key or "token" for Scoped API Token
# @ttl - DNS TTL (seconds), can be set between (30 if enterprise) 60 and 86400 seconds, or 1 for Automatic # @auth_key - Your API Token or Global API Key
# @proxy - Set the proxy to true or false # @zone_identifier - Can be found in the "Overview" tab of your domain
# -------------------------------------------------- # # -------------------------------------------------- #
record_name="" auth_email=""
ttl="3600" auth_method="token"
proxy="false" auth_key=""
zone_identifier=""
############### SCRIPT CONFIGURATION ###############
# @static_IPv6_mode - Useful if you are using EUI-64 IPv6 address with SLAAC IPv6 suffix token. (Privacy Extensions) ############# DNS RECORD CONFIGURATION #############
# + Or some kind of static IPv6 assignment from DHCP server configuration, etc # @record_name - Which record you want to be synced
# + If set to false, the IPv6 address will be acquired from external services # @ttl - DNS TTL (seconds), can be set between (30 if enterprise) 60 and 86400 seconds, or 1 for Automatic
# @last_notable_hexes - Used with `static_IPv6_mode`. Configure this to target what specific IPv6 address to search for # @proxy - Set the proxy to true or false
# + E.g. Your global primary IPv6 address is 2404:6800:4001:80e::59ec:ab12:34cd, then # -------------------------------------------------- #
# + You can put values (i.e. static suffixes) such as "34cd", "ab12:34cd" and etc record_name=""
# @log_header_name - Header name used for logs ttl="3600"
# -------------------------------------------------- # proxy="false"
static_IPv6_mode="false"
last_notable_hexes="ffff:ffff" ############### SCRIPT CONFIGURATION ###############
log_header_name="DDNS Updater_v6" # @static_IPv6_mode - Useful if you are using EUI-64 IPv6 address with SLAAC IPv6 suffix token. (Privacy Extensions)
# + Or some kind of static IPv6 assignment from DHCP server configuration, etc
############# WEBHOOKS CONFIGURATION ############### # + If set to false, the IPv6 address will be acquired from external services
# @sitename - Title of site "Example Site" # @last_notable_hexes - Used with `static_IPv6_mode`. Configure this to target what specific IPv6 address to search for
# @slackchannel - Slack Channel #example # + E.g. Your global primary IPv6 address is 2404:6800:4001:80e::59ec:ab12:34cd, then
# @slackuri - URI for Slack WebHook "https://hooks.slack.com/services/xxxxx" # + You can put values (i.e. static suffixes) such as "34cd", "ab12:34cd" and etc
# @discorduri - URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx" # @log_header_name - Header name used for logs
# -------------------------------------------------- # # -------------------------------------------------- #
sitename="" static_IPv6_mode="false"
slackchannel="" last_notable_hexes="ffff:ffff"
slackuri="" log_header_name="DDNS Updater_v6"
discorduri=""
############# WEBHOOKS CONFIGURATION ###############
# @sitename - Title of site "Example Site"
# @slackchannel - Slack Channel #example
################################################ # @slackuri - URI for Slack WebHook "https://hooks.slack.com/services/xxxxx"
## Make sure we have a valid IPv6 connection # @discorduri - URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx"
################################################ # -------------------------------------------------- #
if ! { curl -6 -s --head --fail https://ipv6.google.com >/dev/null; }; then sitename=""
logger -s "$log_header_name: Unable to establish a valid IPv6 connection to a known host." slackchannel=""
slackuri=""
discorduri=""
;;
"file")
# Load variables from file
CONFIG_FILE="$HOME/.cloudflare/config6.ini"
# Check if the configuration file exists
if [ -f "$CONFIG_FILE" ]; then
# Load configuration from the file
source "$CONFIG_FILE"
else
logger "Error: Configuration file '$CONFIG_FILE' not found."
exit 1
fi
;;
"pass")
# Load variables from pass
source <(pass credentials/cloudflare)
;;
*)
logger "Invalid load_variables option"
exit 1
;;
esac
}
validate_variables(){
# Validate required variables
if [[ -z $auth_email || -z $auth_key || -z $zone_identifier || -z $record_name ]]; then
logger "Missing required variables. Please provide values for 'auth_email', 'auth_key', 'zone_identifier', and 'record_name'."
exit 1 exit 1
fi fi
}
################################################
## Finding our IPv6 address
################################################ check_ipv6_is_available(){
# Regex credits to https://stackoverflow.com/a/17871737 if ! { curl -6 -s --head --fail https://ipv6.google.com >/dev/null; }; then
ipv6_regex="(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))" logger -s "$log_header_name: Unable to establish a valid IPv6 connection to a known host."
exit 1
if $static_IPv6_mode; then
# Test whether 'ip' command is available
if { command -v "ip" &>/dev/null; }; then
ip=$(ip -6 -o addr show scope global primary -deprecated | grep -oE "$ipv6_regex" | grep -oE ".*($last_notable_hexes)$")
else
# Fall back to 'ifconfig' command
ip=$(ifconfig | grep -oE "$ipv6_regex" | grep -oE ".*($last_notable_hexes)$")
fi fi
else
# Use external services to discover our system's preferred IPv6 address # Regex credits to https://stackoverflow.com/a/17871737
ip=$(curl -s -6 https://cloudflare.com/cdn-cgi/trace | grep -E '^ip') ipv6_regex="(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])\.){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))"
ret=$?
if [[ ! $ret == 0 ]]; then # In the case that cloudflare failed to return an ip. if $static_IPv6_mode; then
# Attempt to get the ip from other websites. # Test whether 'ip' command is available
ip=$(curl -s -6 https://api64.ipify.org || curl -s -6 https://ipv6.icanhazip.com) if { command -v "ip" &>/dev/null; }; then
ip=$(ip -6 -o addr show scope global primary -deprecated | grep -oE "$ipv6_regex" | grep -oE ".*($last_notable_hexes)$")
else
# Fall back to 'ifconfig' command
ip=$(ifconfig | grep -oE "$ipv6_regex" | grep -oE ".*($last_notable_hexes)$")
fi
else else
# Extract just the ip from the ip line from cloudflare. # Use external services to discover our system's preferred IPv6 address
ip=$(echo $ip | sed -E "s/^ip=($ipv6_regex)$/\1/") ip=$(curl -s -6 https://cloudflare.com/cdn-cgi/trace | grep -E '^ip')
ret=$?
if [[ ! $ret == 0 ]]; then # In the case that cloudflare failed to return an ip.
# Attempt to get the ip from other websites.
ip=$(curl -s -6 https://api64.ipify.org || curl -s -6 https://ipv6.icanhazip.com)
else
# Extract just the ip from the ip line from cloudflare.
ip=$(echo $ip | sed -E "s/^ip=($ipv6_regex)$/\1/")
fi
fi fi
fi
# Check point: Make sure the collected IPv6 address is valid
if [[ ! $ip =~ ^$ipv6_regex$ ]]; then
logger -s "$log_header_name: Failed to find a valid IPv6 address."
exit 1
fi
################################################
## Check and set the proper auth header
################################################
if [[ "${auth_method}" == "global" ]]; then
auth_header="X-Auth-Key:"
else
auth_header="Authorization: Bearer"
fi
################################################
## Seek for the AAAA record
################################################
logger "$log_header_name: Check Initiated"
record=$(curl -s -X GET "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records?type=AAAA&name=$record_name" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json")
################################################
## Check if the domain has an AAAA record
################################################
if [[ $record == *"\"count\":0"* ]]; then
logger -s "$log_header_name: Record does not exist, perhaps create one first? (${ip} for ${record_name})"
exit 1
fi
################################################ # Check point: Make sure the collected IPv6 address is valid
## Get existing IP if [[ ! $ip =~ ^$ipv6_regex$ ]]; then
################################################ logger -s "$log_header_name: Failed to find a valid IPv6 address."
old_ip=$(echo "$record" | sed -E 's/.*"content":"'${ipv6_regex}'".*/\1/') exit 1
fi
}
# Make sure the extracted IPv6 address is valid set_auth_headers(){
if [[ ! $old_ip =~ ^$ipv6_regex$ ]]; then if [[ "${auth_method}" == "global" ]]; then
logger -s "$log_header_name: Unable to extract existing IPv6 address from DNS record." auth_header="X-Auth-Key:"
exit 1 else
fi auth_header="Authorization: Bearer"
# Compare if they're the same
if [[ $ip == $old_ip ]]; then
logger "$log_header_name: IP ($ip) for ${record_name} has not changed."
exit 0
fi
################################################
## Set the record identifier from result
################################################
record_identifier=$(echo "$record" | sed -E 's/.*"id":"([A-Za-z0-9_]+)".*/\1/')
################################################
## Change the IP@Cloudflare using the API
################################################
update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json" \
--data "{\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":$proxy}")
################################################
## Report the status
################################################
case "$update" in
*"\"success\":false"*)
echo -e "$log_header_name: $ip $record_name DDNS failed for $record_identifier ($ip). DUMPING RESULTS:\n$update" | logger -s
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw "{
\"channel\": \"$slackchannel\",
\"text\": \"$sitename DDNS Update Failed: $record_name: $record_identifier ($ip).\"
}"
fi fi
if [[ $discorduri != "" ]]; then }
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw "{ check_if_aaaa_record_exists(){
\"content\": \"$sitename DDNS Update Failed: $record_name: $record_identifier ($ip).\" logger "$log_header_name: Check Initiated"
}" $discorduri record=$(curl -s -X GET "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records?type=AAAA&name=$record_name" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json")
if [[ $record == *"\"count\":0"* ]]; then
logger -s "$log_header_name: Record does not exist, perhaps create one first? (${ip} for ${record_name})"
exit 1
fi fi
exit 1 }
;;
*) get_current_ip_from_cloudflare(){
logger "$log_header_name: $ip $record_name DDNS updated." old_ip=$(echo "$record" | sed -E 's/.*"content":"'${ipv6_regex}'".*/\1/')
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \ # Make sure the extracted IPv6 address is valid
--data-raw "{ if [[ ! $old_ip =~ ^$ipv6_regex$ ]]; then
\"channel\": \"$slackchannel\", logger -s "$log_header_name: Unable to extract existing IPv6 address from DNS record."
\"text\": \"$sitename Updated: $record_name's new IPv6 Address is $ip\" exit 1
}"
fi fi
if [[ $discorduri != "" ]]; then
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \ # Compare if they're the same
--data-raw "{ if [[ $ip == $old_ip ]]; then
\"content\": \"$sitename Updated: $record_name's new IPv6 Address is $ip\" logger "$log_header_name: IP ($ip) for ${record_name} has not changed."
}" $discorduri exit 0
fi fi
exit 0 }
;;
esac update_ip_on_cloudflare(){
record_identifier=$(echo "$record" | sed -E 's/.*"id":"([A-Za-z0-9_]+)".*/\1/')
update=$(curl -s -X PATCH "https://api.cloudflare.com/client/v4/zones/$zone_identifier/dns_records/$record_identifier" \
-H "X-Auth-Email: $auth_email" \
-H "$auth_header $auth_key" \
-H "Content-Type: application/json" \
--data "{\"content\":\"$ip\",\"ttl\":\"$ttl\",\"proxied\":$proxy}")
}
send_webhooks(){
case "$update" in
*"\"success\":false"*)
echo -e "$log_header_name: $ip $record_name DDNS failed for $record_identifier ($ip). DUMPING RESULTS:\n$update" | logger -s
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw "{
\"channel\": \"$slackchannel\",
\"text\": \"$sitename DDNS Update Failed: $record_name: $record_identifier ($ip).\"
}"
fi
if [[ $discorduri != "" ]]; then
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw "{
\"content\": \"$sitename DDNS Update Failed: $record_name: $record_identifier ($ip).\"
}" $discorduri
fi
exit 1
;;
*)
logger "$log_header_name: $ip $record_name DDNS updated."
if [[ $slackuri != "" ]]; then
curl -L -X POST $slackuri \
--data-raw "{
\"channel\": \"$slackchannel\",
\"text\": \"$sitename Updated: $record_name's new IPv6 Address is $ip\"
}"
fi
if [[ $discorduri != "" ]]; then
curl -i -H "Accept: application/json" -H "Content-Type:application/json" -X POST \
--data-raw "{
\"content\": \"$sitename Updated: $record_name's new IPv6 Address is $ip\"
}" $discorduri
fi
exit 0
;;
esac
}
main(){
validate_variables
check_ipv6_is_available
set_auth_headers
check_if_aaaa_record_exists
get_current_ip_from_cloudflare
update_ip_on_cloudflare
send_webhooks
}
# switch for environment variables loading
case "$1" in
"local"|"file"|"pass")
load_variables "$1"
main
;;
*)
display_help
exit 1
;;
esac

11
config4.ini
Unescape View File

@ -0,0 +1,11 @@
auth_email="" # The email used to login 'https://dash.cloudflare.com'
auth_method="" # Set to "global" for Global API Key or "token" for Scoped API Token
auth_key="" # Your API Token or Global API Key
zone_identifier="" # Can be found in the "Overview" tab of your domain
record_name="" # Which record you want to be synced
ttl="3600" # Set the DNS TTL (seconds)
proxy="false" # Set the proxy to true or false
sitename="" # Title of site "Example Site"
slackchannel="" # Slack Channel #example
slackuri="" # URI for Slack WebHook "https://hooks.slack.com/services/xxxxx"
discorduri="" # URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx"

43
config6.ini
Unescape View File

@ -0,0 +1,43 @@
############## CLOUDFLARE CREDENTIALS ##############
# @auth_email - The email used to login 'https://dash.cloudflare.com'
# @auth_method - Set to "global" for Global API Key or "token" for Scoped API Token
# @auth_key - Your API Token or Global API Key
# @zone_identifier - Can be found in the "Overview" tab of your domain
# -------------------------------------------------- #
auth_email=""
auth_method="token"
auth_key=""
zone_identifier=""
############# DNS RECORD CONFIGURATION #############
# @record_name - Which record you want to be synced
# @ttl - DNS TTL (seconds), can be set between (30 if enterprise) 60 and 86400 seconds, or 1 for Automatic
# @proxy - Set the proxy to true or false
# -------------------------------------------------- #
record_name=""
ttl="3600"
proxy="false"
############### SCRIPT CONFIGURATION ###############
# @static_IPv6_mode - Useful if you are using EUI-64 IPv6 address with SLAAC IPv6 suffix token. (Privacy Extensions)
# + Or some kind of static IPv6 assignment from DHCP server configuration, etc
# + If set to false, the IPv6 address will be acquired from external services
# @last_notable_hexes - Used with `static_IPv6_mode`. Configure this to target what specific IPv6 address to search for
# + E.g. Your global primary IPv6 address is 2404:6800:4001:80e::59ec:ab12:34cd, then
# + You can put values (i.e. static suffixes) such as "34cd", "ab12:34cd" and etc
# @log_header_name - Header name used for logs
# -------------------------------------------------- #
static_IPv6_mode="false"
last_notable_hexes="ffff:ffff"
log_header_name="DDNS Updater_v6"
############# WEBHOOKS CONFIGURATION ###############
# @sitename - Title of site "Example Site"
# @slackchannel - Slack Channel #example
# @slackuri - URI for Slack WebHook "https://hooks.slack.com/services/xxxxx"
# @discorduri - URI for Discord WebHook "https://discordapp.com/api/webhooks/xxxxx"
# -------------------------------------------------- #
sitename=""
slackchannel=""
slackuri=""
discorduri=""
Write Preview
Loading…
Cancel
Save