firehol

user friendly firewall

NOTE: update-ipsets and friends seem to have lost support in recent times, see https://github.com/firehol/firehol/issues/405

firehol-tools

Debian package which contains update-ipsets for blocking bad IPs.

update-ipsets enable list to enable a blocklist
ipset-apply list.ipset list2.netset to apply the blocklists in kernel; note this is an external script found here: https://github.com/firehol/firehol/blob/master/contrib/ipset-apply.sh

Actually do something with the ipsets, something like sudo iptables -I INPUT -m set --match-set banthis src -p tcp --destination-port 80 -j DROP
See https://www.xmodulo.com/block-unwanted-ip-addresses-linux.html for more

systemd service:

[Unit]
Description=Updates firehol iplists and applies ipsets
After=default.target network.target
 
[Service]
Type=oneshot
ExecStart=/bin/bash -c "update-ipsets && for i in /etc/firehol/ipsets/*.{ipset,netset}; do sudo ipset-apply $i; done"
 
[Install]
WantedBy=default.target

blocklist searcher

https://blocklist.sernate.com/ → Search by IP address or CIDR range if a bad IP is in any blocklist

Table of Contents

firehol

firehol-tools

blocklist searcher