Proxmox access lockout script - lock out access to webui/SSH, best used with crontab schedule

proxmox_access.sh

#!/usr/bin/env bash

file=/etc/pve/firewall/cluster.fw
drop_rule="IN DROP -log nolog"
group_rule="IN ACCEPT -source 192.168.1.0\/24 -log nolog"

function comment {
	replace "$1" "|$1" $2
}

function uncomment {
	replace "|$1" "$1" $2
}

function replace {
	eval "sed -i '/^$1/ c$2' $3"
}

case "$1" in
	"disable")
		uncomment "$drop_rule" "$file"
		comment "$group_rule" "$file"
	;;
	"enable")
		comment "$drop_rule" "$file"
		uncomment "$group_rule" "$file"
	;;
esac

Set up a crontab entry by entering crontab -e and adding the following lines:

0       5       *       *       *       /bin/bash /root/scripts/access.sh enable
0       22      *       *       *       /bin/bash /root/scripts/access.sh disable