Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. redhat27

    Yet another malware block script using ipset (v4 and v6)

    @eclp Are you running the script from services-start? Edit: Also, when you manually run it does it work?
  2. redhat27

    AB-Solution - The Ad Blocking Solution

    blacklist-domains.txt is the default file referenced by the iblocklist-loader.sh script
  3. redhat27

    Yet another malware block script using ipset (v4 and v6)

    Could this then be an entry on the networking how-to? Something like "How to block scanners, bots, malware, ransomware, etc with published FireHOL blocking tiers" or something similar?
  4. redhat27

    AB-Solution - The Ad Blocking Solution

    I have shooter40sw list enabled in AB, for me these entries in that file resolve to my pixelserv ip: settings-sandbox.data.microsoft.com telemetry.appex.bing.net redir.metaservices.microsoft.com choice.microsoft.com pre.footprintpredict.com watson.live.com vortex.data.microsoft.com...
  5. redhat27

    AB-Solution - The Ad Blocking Solution

    No, quite the opposite, actually. The entries on this file should not resolve to local IPs. So these should be whitelisted by AB, (only if the /jffs/ipset_lists/blacklist-domains.txt exist)
  6. redhat27

    Yet another malware block script using ipset (v4 and v6)

    Makes sense. I do not think that page explains how to use ipsets very much now There are 3 bullet points and a link to the man page, and that's about it. Would you like me to rename the page to something along the lines of "Firewall scripts using ipsets" or something similar? Also, there are...
  7. redhat27

    AB-Solution - The Ad Blocking Solution

    @thelonelycoder Would it be possible to do the auto-whitelisting in AB that you mentioned earlier for that file (/jffs/ipset_lists/blacklist-domains.txt) if it exists? It contains domains list, not IPs Also, might I add @Xentrk that this has not posed a problem for me. Not sure why...
  8. redhat27

    Yet another malware block script using ipset (v4 and v6)

    If this script is helpful, maybe it can be mentioned in the ipset scripts wiki. I know @shooter40sw had mentioned that I put it there, but I'm not sure if I should do so: There are other ipset related scripts in the forums, and it may seem improper to list just this one. If @Adamm @Martineau...
  9. redhat27

    Yet another malware block script using ipset (v4 and v6)

    @HRearden This script should be entware-agnostic on asuswrt, but wget is not from busybox: admin@RT-AC66R-D700:/tmp/home/root# which wget /usr/sbin/wget You can probably just alter the script to say: (while read -r url; do wget -qO- $url; done < $URLList) | nice -n 15 sed (rest of the...
  10. redhat27

    Entware-ng for arm, mipsel ....

    Update again: Its now merged! Can we hope to get a entware-ng update sometime soon?
  11. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    @ScottW its in the raw table, PREROUTING. See post #186
  12. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    Sorry for the late reply @Xentrk work was keeping me busy. Will likely keep me occupied in the near future too :oops: Removed the invalid entry. Thanks for reporting. Whatever domain is resolving to the local IP, is now being blocked on the firewall instead of in the dns lookup. I fail to see...
  13. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    @joesixpack Some of your concerns are valid. This script specifically caters to loading lists form the iblocklist.com site, with some limited customizations. For general overall security, I would recommend you to try out the ya-malware-block script that blocks a wide variety of malware sources...
  14. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    Would the correct IPs for each location be added to the WhitelistDomains ipset? I mean if you just whitelist: yahoo.com mail.yahoo.com mg.mail.yahoo.com would that not be enough? Even if mg.mail.yahoo.com resolves to different IPs in different locations, it would still whitelist the IPs it...
  15. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    The iblocklist-loader should have created all these IPs for you... You do not need to whitelist them individually. Can you post: nslookup mg.mail.yahoo.com | sed -n '/^$/,$ s/^A.*: //p' | cut -d' ' -f1 | grep -v ":" The IPs from the above command should get added to the WhitelistDomains ipset...
  16. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    Thank you for telling me where it was. I've removed it on github. It should be good now. Please remove the bad entry locally or re-download from github. Thanks
  17. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    If you want the iblocklist-loader to download the data from the iblocklist.com website on each run, you'd need to set USE_LOCAL_CACHE to N. You will not get those messages anymore. However, the script will take longer to run due to the downloading and processing each time. Also, I think you may...
  18. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    This script should be able to handle that. Make sure index 281 is part of your BLOCKLIST_INDEXES. Also, the domain you want to whitelist as part of the whitelist-domains.txt file. It should be straight forward. Let me know if you are still having problem setting this up.
  19. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    @Xentrk Might I also add, that if Bluetack Spider is creating issues for you , you can opt to remove it from your active blocklists (remove "13" from BLOCKLIST_INDEXES)
  20. redhat27

    iblocklist.com generic ipset loader for ipset v6 and v4

    try iptables -t raw -S Also, thank you @Xentrk for helping @bayern1975
Top