From 7ff2fd64c44a56d559ef26a3e635d6d10dce2bd7 Mon Sep 17 00:00:00 2001
From: Gregory Colpart <gcolpart@ioakim2.evolix.net>
Date: Thu, 13 Aug 2009 01:01:59 +0200
Subject: [PATCH] Add script for blacklist countries with RIPE LIR informations

---
 blacklist-countries.sh | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 blacklist-countries.sh

diff --git a/blacklist-countries.sh b/blacklist-countries.sh
new file mode 100644
index 0000000..45a5291
--- /dev/null
+++ b/blacklist-countries.sh
@@ -0,0 +1,23 @@
+#!/bin/sh
+
+ripedeny_file=/var/tmp/ripe_deny
+
+cd /var/tmp
+
+rm -f $ripedeny_file
+
+GET http://zidane.evolix.net/spam/ripe.cidr.md5 > ripe.cidr.md5
+GET http://zidane.evolix.net/spam/ripe.cidr > ripe.cidr
+
+for i in CN KR RU; do
+
+    grep "^$i|" ripe.cidr >> $ripedeny_file
+
+done
+
+/sbin/iptables -F NEEDRESTRICT
+
+for i in $(cat $ripedeny_file); do
+    BLOCK=$(echo $i | cut -d"|" -f2)
+    /sbin/iptables -I NEEDRESTRICT -s $BLOCK -j DROP
+done