不知道是否在任何被阻止的事件中打开端口/协议的shell脚本是正确的

我正在编写一个脚本来检查/打开任何阻塞的端口/协议。我到目前为止已经在下面。端口/协议名称对我来说看起来很奇怪。我会预期IP地址，但我从来没有这样做过。主机是否是DSLAM的IP地址？另外，如果它是当前机器，我可以在不指定主机的情况下运行nc吗？否则，这个脚本是否需要做什么？不知道是否在任何被阻止的事件中打开端口/协议的shell脚本是正确的

#!/bin/bash 

PATH=/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin:/sbin 

echo -e "############################nnnPresent ports opened on this machine are 

$(iptables -nL INPUT | grep ACCEPT | grep dpt) 

nCompleted listing...nnn#########################" 

#these look funny to me 
PORTS=(123 161 69 "UDP" 80 443 22 8443 8080 23 25 3307 "TCP" "HTTPS" "SNMP" "SFTP" "TFTP") 
#modified ip's for public sharing 
HOSTS=("10.x.x.x" "10.x.x.x" "10.x.x.x" "10.x.x.x" "10.x.x.x") 

for HOST in "${HOSTS[@]}" 
    do 
    for PORT in "${PORTS[@]}" 
     do 
     #see which ones need opening...0 is pass (open), 1 fail, 5 timeout; need host still 
     #alternatively try nmap 
     nc -z -v -w5 ${HOST} ${PORT} 
     #if it's not open, then open it 
     if [ "$?" ne 0 ]; then #shellcheck err this line: Couldn't parse this test expression. 
      iptables -A INPUT -m tcp -p tcp --dport "$PORT" -j ACCEPT && 
      { service iptables save; 
      service iptables restart; 
      echo -e "Ports opened through iptables are n$(iptables -nL INPUT | grep ACCEPT | grep dpt)"; } 
     else 
      echo "Port $PORT already open" 
     fi 
    done 
done 

我已经提到test if port is open，也open port。