From 6db792a7c9d8196bc4729a154bfbc14c9b202019 Mon Sep 17 00:00:00 2001
From: GoEdgeLab <goedgecloud@gmail.com>
Date: Fri, 3 May 2024 15:11:54 +0800
Subject: [PATCH] =?UTF-8?q?UDP=E8=BF=9E=E6=8E=A5=E4=B9=9F=E6=A3=80?=
 =?UTF-8?q?=E6=9F=A5IP=E5=90=8D=E5=8D=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 internal/nodes/listener_udp.go | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/internal/nodes/listener_udp.go b/internal/nodes/listener_udp.go
index 2923dcf..927da5f 100644
--- a/internal/nodes/listener_udp.go
+++ b/internal/nodes/listener_udp.go
@@ -3,7 +3,9 @@ package nodes
 import (
 	"errors"
 	"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs"
+	"github.com/TeaOSLab/EdgeNode/internal/firewalls"
 	"github.com/TeaOSLab/EdgeNode/internal/goman"
+	"github.com/TeaOSLab/EdgeNode/internal/iplibrary"
 	"github.com/TeaOSLab/EdgeNode/internal/remotelogs"
 	"github.com/TeaOSLab/EdgeNode/internal/stats"
 	"github.com/TeaOSLab/EdgeNode/internal/utils"
@@ -164,7 +166,7 @@ func (this *UDPListener) servePacketListener(listener UDPPacketListener) error {
 		}
 	})
 
-	var buffer = make([]byte, 4*1024)
+	var buffer = make([]byte, 4<<10)
 	for {
 		if this.isClosed {
 			return nil
@@ -183,6 +185,16 @@ func (this *UDPListener) servePacketListener(listener UDPPacketListener) error {
 			return err
 		}
 
+		// 检查IP名单
+		clientIP, _, parseHostErr := net.SplitHostPort(clientAddr.String())
+		if parseHostErr == nil {
+			ok, _, expiresAt := iplibrary.AllowIP(clientIP, firstServer.Id)
+			if !ok {
+				firewalls.DropTemporaryTo(clientIP, expiresAt)
+				continue
+			}
+		}
+
 		if n > 0 {
 			this.connLocker.Lock()
 			conn, ok := this.connMap[clientAddr.String()]