fail2drop
iptables-ddns
| fail2drop | iptables-ddns | |
|---|---|---|
| 1 | 2 | |
| 1 | 5 | |
| - | - | |
| 8.6 | 0.0 | |
| about 1 month ago | about 3 years ago | |
| Go | Go | |
| GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
fail2drop
-
Fail2ban Sucks
I think ssh on a non-standard port is a no-brainer, have been doing this for years.
But at some point I got too many log entries of failed ssh access attempts. So I looked into fail2ban, but found the system too involved, and I don't like python for this kind of thing to start with. Then I started looking for alternatives, because I figured you only need something very simple, that checks certain log files and then instructs the kernel through netfilter to drop traffic from all infracting IPs. I like single-binary applications, especially for things installed outside the normal package manager. Found a skeleton of a golang app that claimed to work (it didn't), but I managed to rework it, and it serves my use cases: https://github.com/pepa65/fail2drop
iptables-ddns
-
Can't Direct Traffic to Cloud Pi-Hole
I have a GCP instance running Debian 10 and installed nftables, am using this script to whitelist ports 22 and 53 (TCP) and 53 (UDP) for my home network only (using ddns because my home network's public IP is not static), and installed Pi-Hole. For upstream DNS server, I added my home network's IP address (I know this will randomly change). On my router (Advanced Tomato), I have OpenDNS as my DNS server, and in dnsmasq, I have added the line: dhcp-option=6,11.222.33.44 (11.222.33.44 being the static, public IP of my GCP instance). I am not getting any activity/queries.
- Iptables-DDNS
What are some alternatives?
vFlow - Enterprise Network Flow Collector (IPFIX, sFlow, Netflow)
firehol - A firewall for humans...
topip - IPv4 grep and top usage summary for log files
merlin-ddns-cloudflare - asuswrt merlin cloudflare ddns using api
iplib - A library for working with IP addresses and networks in Go
ddns-updater - Container to update DNS records periodically with WebUI for many DNS providers
go-fasttld - go-fasttld is a high performance effective top level domains (eTLD) extraction module.
opensnitch - OpenSnitch is a GNU/Linux application firewall
dsddns - The Dual-Stack Dynamic DNS client, the world's first dynamic DNS client built for IPv6.
GoDNS - A dynamic DNS client tool that supports AliDNS, Cloudflare, Google Domains, DNSPod, HE.net & DuckDNS & DreamHost, etc, written in Go.
update-plex-ipv6-access-url - DynDNS-like tool for keeping your Plex IPv6 custom access URL up to date