Complementing your firewall with IP blocking
- Shell 65.9%
- Python 34.1%
|
Tavi
73d0b820a0
no effective change Signed-off-by: Tavi <tavi@divested.dev> |
||
|---|---|---|
| .gitignore | Process exclusions using a persistent file | |
| .gitlab-ci.yml | CI: enable shellcheck | |
| ip-aggregator.py | Combine all lists into one big optimized list for efficiency | |
| LICENSE | Going the distance... [pt3] | |
| README.md | Block cralwers using rules from Anubis | |
| scfw3.sh | Block cralwers using rules from Anubis | |
| trash.sh | trash.sh: browser updates | |
SCFW3
Overview
- These are two simple scripts to block known and learned bad addresses.
- It is meant to be used on top of firewalld.
- This is for resource management, not security.
Use
- Place scfw3.sh into /etc/cron.daily/1scfw
- Copy ip-aggregator.py into /usr/local/bin/
- This is mandatory
- Configure the lists you want enabled at the top of it
- Copy ip-aggregator.py into /usr/local/bin/
- Place trash.sh into /etc/cron.hourly/2trash
chmod +xboth of them- Enjoy!
Known Issues
- You must set FirewallBackend to iptables for firewalld or will have very long load times
Credits
- FireHOL for the blocklists: https://iplists.firehol.org
- IPdeny for the country lists: https://ipdeny.com
- @andrewtwin for the IP & CIDR merger: https://github.com/andrewtwin/ip-aggregator