From f59114a68864e4905e5085b41a062fa95eaee122 Mon Sep 17 00:00:00 2001
From: midoks <midoks@163.com>
Date: Wed, 1 Feb 2023 13:09:28 +0800
Subject: [PATCH] =?UTF-8?q?=E8=87=AA=E5=8A=A8=E8=8E=B7=E5=8F=96ssh?=
 =?UTF-8?q?=E7=AB=AF=E5=8F=A3?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 scripts/install/debian.sh | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/scripts/install/debian.sh b/scripts/install/debian.sh
index 5b5f8a05f..177895509 100644
--- a/scripts/install/debian.sh
+++ b/scripts/install/debian.sh
@@ -25,6 +25,9 @@ if [ ! -z "$cn" ];then
 fi
 ntpdate $NTPHOST | logger -t NTP
 
+SSH_PORT=`netstat -ntpl|grep sshd|grep -v grep | sed -n "1,1p" | awk '{print $4}' | awk -F : '{print $2}'`
+echo "SSH PORT:${SSH_PORT}"
+
 if [ ! -f /usr/sbin/locale-gen ];then
 	apt install -y locales
 	sed -i '/en_US.UTF-8/s/^# //g' /etc/locale.gen
@@ -44,6 +47,7 @@ apt install -y python3-pip python3-dev python3-venv
 if [ -f /usr/sbin/ufw ];then
 
 	ufw allow 22/tcp
+	ufw allow $SSH_PORT/tcp
 	ufw allow 80/tcp
 	ufw allow 443/tcp
 	ufw allow 888/tcp
@@ -67,6 +71,7 @@ if [ ! -f /usr/sbin/ufw ];then
 	systemctl start firewalld
 
 	firewall-cmd --permanent --zone=public --add-port=22/tcp
+	firewall-cmd --permanent --zone=public --add-port=${SSH_PORT}/tcp
 	firewall-cmd --permanent --zone=public --add-port=80/tcp
 	firewall-cmd --permanent --zone=public --add-port=443/tcp
 	firewall-cmd --permanent --zone=public --add-port=888/tcp