blocklist-ipsets
firehol
Our great sponsors
blocklist-ipsets | firehol | |
---|---|---|
39 | 8 | |
2,938 | 1,459 | |
2.3% | 0.9% | |
2.8 | 1.6 | |
7 days ago | 4 months ago | |
Shell | Shell | |
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
blocklist-ipsets
- [Opnsensefirewall] Bloquer des IP malveillants avec un pare-feu OPNSENSE
-
Firewall Rules for a recently probed newbie?
Look into FireHol and its use of IPsets: https://firehol.org/guides/ipset/ | http://iplists.firehol.org/ - you can easily do what you’re wanting with these two.
- IPlist of bots/malicious actors
- Ask HN: What are these strange random strings spamming my blog?
-
A good malware/threat filtering choice on OPNSense
Yes, unfortunately i think this also happened other times with Firehol L3 (you can see https://github.com/firehol/blocklist-ipsets/issues/188) but thanks for the lists advice.
-
Creating a cyber threat intelligence tool
It sounds like you want to jump into game development before learning how to write "Hello, world!". Try using any of the open source tools that already do this and sign up for some "free" threat intel tools and learn the lay of the land. https://www.misp-project.org/ https://github.com/OpenCTI-Platform/opencti https://iplists.firehol.org/ https://www.greynoise.io/
-
Did anyone notice an abnormal increase in banned clients? These are my daily fail2ban ban count
I believe you are running SSH over default port 22 - feel free to change that. You can also use iplists from FireHOL to block any connection from blacklisted (on way or another) IPs - https://iplists.firehol.org/
- External Dynamic lists
-
blocklist-ipsets VS Lists - a user suggested alternative
2 projects | 19 Jan 2023
-
Show HN: A Golang package and tool to detect Tor exit IP addresses
Tor exits are tracked here [1] and in a few other block-list repos. The data is built from Tor's exit node list [2]
[1] - https://github.com/firehol/blocklist-ipsets
[2] - https://check.torproject.org/exit-addresses
firehol
-
Ask HN: Someone is proxy-mirroring my website, can I do anything?
http://iplists.firehol.org/ looks free and very comprehensive. It has whole bunch of sub-lists of IPs that are likely to be sources of abuse, including datacenters and VPNs, and it gets updated frequently. Github: https://github.com/firehol/firehol
-
How I protect my externally exposed services
it does somewhat but requires additional rules for the docker chains: https://github.com/firehol/firehol/issues/114
- How to easily convert iptables-based rsyslog/logrotate configs to nflog/ulogd2?
-
Server firewalling options
I like how it's configured, thanks for elaborating in it, I'm amazed I never heard of this project before. That link take me to https://github.com/firehol/firehol/pull/262 is that the right way?
-
Ubuntu Kvm Vps Iptables Ctstate
One thing: the `interface not [devices...]` capability, as noted above, is slightly lacking. We get around it with a `interface e+ exposed` command, for now. Details: https://github.com/firehol/firehol/issues/450
-
Confused About Firehol Ip Lists
I can not find the URL, I have found this: https://github.com/firehol/firehol/blob/master/sbin/update-ipsets
What are some alternatives?
nginx-ultimate-bad-bot-blocker - Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
iptables-nftables-multiroute-firewall - A collection of nftables, multi routing scripts, port knocked, and iptables files. To get inspiration to make your own firewalls.
crowdsec - CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
ufw-docker - To fix the Docker and UFW security flaw without disabling iptables
my-pihole-blocklists - Create custom pi-hole blocklists
docker-host - A docker sidecar container to forward all traffic to local docker host or any other host
ipsum - Daily feed of bad IPs (with blacklist hit scores)
ansible-iptables - Ansible role that applies a strict and secure set of rules to iptables with many configurable options
block - Let's make an annoyance free, better open internet, altogether!
kalitorify - Transparent proxy through Tor for Kali Linux OS
geoip-blocking-w-firewalld - Block unwanted countries IPv4 & IPv6 ranges with firewalld using ipdeny.com
iptables-ddns - Using domain name on IPtables. Keep updated firewall rules from dynamic DNS (DDNS).