evolix/minifirewall
21
0
Fork 0
Code Issues 4 Pull requests 3 Releases 1 Activity
minifirewall/blacklist-countries.sh

21 lines
449 B
Bash
Raw Permalink Blame History

#!/bin/sh
NFT=/usr/sbin/nft
ripedeny_file=/var/tmp/ripe_deny
cd /var/tmp
rm -f $ripedeny_file
GET http://antispam00.evolix.org/spam/ripe.cidr.md5 > ripe.cidr.md5
GET http://antispam00.evolix.org/spam/ripe.cidr > ripe.cidr
for i in CN KR RU; do
grep "^$i|" ripe.cidr >> $ripedeny_file
done
for i in $(cat $ripedeny_file); do
BLOCK=$(echo $i | cut -d"|" -f2)
$NFT add element inet minifirewall minifirewall_blocked_ips {$BLOCK}
done
Reference in a new issue View git blame Copy permalink