ChiefGyk
|
52410106e9
|
replaced iptables-persistent with another iptables-persistent in /etc/init.d, this one also will save ipsets and allow persistence upon reboot. Cleaned up some code, changed debconf variables at iptables-persistent install to false. Still installs iptable-persistant through apt, just to get rid of all the foundation work for it to run, but is quickly replaced.
|
2016-06-29 21:35:37 -04:00 |
|
ChiefGyk
|
9b3a158b72
|
Added Dshield, to automatically block the top 20 malicious IP blocks each day. It is merged into blacklist which will run in cron.daily. So ipset blocks the majority of addresses from lists, and IPTables does the blocks.
|
2016-06-29 18:33:09 -04:00 |
|
ChiefGyk
|
61780b8ae7
|
added optional geoblock lists that update weekly for China, and Korea as they create a lot of spam. They are added via IPtables as they are added in blocks.
|
2016-06-29 15:39:41 -04:00 |
|
ChiefGyk
|
8efe6c933f
|
added Malware Domain list and ZeusTracker
|
2016-06-29 14:18:43 -04:00 |
|
ChiefGyk
|
162f580e68
|
moved the comments around so it looked nicer on my other computer
|
2016-06-29 12:34:17 -04:00 |
|
ChiefGyk
|
324f5666f2
|
removed an unneeded line
|
2016-06-29 12:31:59 -04:00 |
|
ChiefGyk
|
1edd94ba39
|
added persistence by adding a couple lines to /etc/network/interfaces. It will automatically load at start, save each time the cron.daily runs, so if you need to reboot the ipset is loaded again.
|
2016-06-29 11:14:03 -04:00 |
|
ChiefGyk
|
ef5f90e02c
|
changed name from blocklist to blacklist to keep more uniform
|
2016-06-29 09:38:08 -04:00 |
|