Skip to content
/ safety-first Public

A very crude and simple way to block IPs from unwanted countries

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

maclermo/safety-first

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
LICENSE
LICENSE
 
 
README.md
README.md
 
 
block-ips
block-ips
 
 

Repository files navigation

safety-first

Rationale

It is important to be protected from unwanted attack attemps from high-risk countries. I think this simple solution is very easy to automate and implement when deploying new virtual machines.

Installation

Run the following commands to install the pre-requisites :

sudo apt-get update
sudo apt-get install -y ipset

sudo ipset -N dangerous hash:net
sudo iptables -A INPUT -m set --match-set dangerous src -j DROP

Copy the file block-ips to /usr/bin/ and chmod +x /usr/bin/block-ips the file.

Install the following crontabs with crontab -e:

0 3 * * * /bin/bash /usr/bin/block-ips &> /dev/null
@reboot /bin/bash /usr/bin/block-ips &> /dev/null

At every 3AM and at every reboot, you will get the latest ip definitions applied to your iptables/ipset.

About

A very crude and simple way to block IPs from unwanted countries

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages