wallneradam · May 29, 2017 14:32 · NeySlim · Nov 28, 2017
diff --git a/ipt-dedup.sh b/ipt-dedup.sh
 #!/bin/sh

 ipt="iptables -w"

 dedup() {
    iptables-save | sed -n "/$1/,/COMMIT/p" | grep "^-" | sort | uniq -dc | while read l
    do
        c=$(echo "$l" | sed "s|^[ ]*\([0-9]*\).*$|\1|")
        rule=$(echo "$l" | sed "s|^[ ]*[0-9]* -A\(.*\)$|-t $1 -D\1|")
        while [ ${c} -gt 1 ]; do
            echo "iptables $rule"
            eval "${ipt} ${rule}"
            c=$((c-1))
        done
    done
 }

 dedup "filter"
 dedup "nat"
 dedup "mangle"
	#!/bin/sh

	ipt="iptables -w"

	dedup() {
	iptables-save \| sed -n "/$1/,/COMMIT/p" \| grep "^-" \| sort \| uniq -dc \| while read l
	do
	c=$(echo "$l" \| sed "s\|^[ ]\([0-9]\).*$\|\1\|")
	rule=$(echo "$l" \| sed "s\|^[ ][0-9] -A\(.*\)$\|-t $1 -D\1\|")
	while [ ${c} -gt 1 ]; do
	echo "iptables $rule"
	eval "${ipt} ${rule}"
	c=$((c-1))
	done
	done
	}

	dedup "filter"
	dedup "nat"
	dedup "mangle"