What's new

Skynet Is default firewall good enough?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Are we able to add multiple lists to Skynet?
Unfortunately not. That's why @SomeWhereOverTheRainBow and I put our own lists together using the various levels of blocklists we feel comfortable with. Simply point skynet to the custom blocklist url of your choice (or make your own) and profit!
 
I've put it back on, no idea why it caused the slow down briefly, it's never done that before. Reinstall seems to have fixed it and I whitelisted the battlenet and roblox stuff it was blocking. All good
You mind sharing the roblox you whitelisted?
 
If you send me $20 in roblox bux! LOL
Haha i might have to pass this time around :)

But I will donate to you for all you been doing around here!!! Really appreciate it.
 
Haha i might have to pass this time around :)

But I will donate to you for all you been doing around here!!! Really appreciate it.
Bahah... jk. I couldn't resist... it was on my mind because I had just bought some for my son. Thanks for considering a donation, @Kingp1n! Much appreciated! :)
 
Bahah... jk. I couldn't resist... it was on my mind because I had just bought some for my son. Thanks for considering a donation, @Kingp1n! Much appreciated! :)
You accept PayPal? If so, please share the link!!
 
pfBlockerNG on pfSense in my case.

You have to use custom blocking list in Skynet. The default is this one:


What we use is this one only:


And a description what it is here:

Question for anyone.... so I'm trying to go back to the Filehol 1 list:
Code:
https://iplists.firehol.org/files/firehol_level1.netset
&
Code:
https://raw.githubusercontent.com/ktsaou/blocklist-ipsets/master/firehol_level1.netset

But I keep getting this error thru Skynet:, when trying either link above:
Code:
[i] Custom Filter Detected: https://iplists.firehol.org/files/firehol_level1.netset
[i] Downloading filter.list         | [0s]
[i] Refreshing Whitelists           | [64s]
[i] Consolidating Blacklist         | curl: no URL specified!
curl: try 'curl --help' for more information
[2s]
[*] List Content Error Detected - Stopping Banmalware

I'm sure it's user error but am I putting the list incorrect?

Curl version currently shows:
Code:
@GT-AX11000-4xx0:/tmp/home/root# /opt/bin/curl --version
curl 7.83.1 (aarch64-openwrt-linux-gnu) libcurl/7.83.1 OpenSSL/1.1.1q zlib/1.2.12
Release-Date: 2022-05-11
Protocols: file ftp ftps http https imap imaps mqtt pop3 pop3s rtsp smtp smtps tftp
Features: alt-svc HSTS HTTPS-proxy IPv6 Largefile libz SSL
 
Last edited:
You mind sharing the roblox you whitelisted?
Here is what I whitelisted for roblox.

you can pop these in your diversion and it will share to your skynet,

The General Allowlist that Unbreaks Roblox:
Code:
accountsettings.roblox.com
auth.roblox.com
badges.roblox.com
billing.roblox.com
chat.roblox.com
client-telemetry.roblox.com
devforum.roblox.com
economy.roblox.com
friends.roblox.com
groups.roblox.com
locale.roblox.com
metrics.roblox.com
privatemessages.roblox.com
roblox.com
thumbnails.roblox.com
trades.roblox.com

Other Domains I have found in my Blocklist that don't matter:

Code:
ads.roblox.com
apps-roblox.com
beta-roblox.com
cxroblox.com
en-roblox.com
eu-roblox.com
htps-web-roblox.com
roblox.com-cheat.in
roblox.com.kz
roblox.com.uy
verifyroblox.com
vvvvw-roblox.com
web-roblox.com.ge
www.eu-roblox.com
www.roblox.com.kz
www.roblox.com.uy

For anyone who needs the power of my allow list, I am willing to share. And it gets regularly updated.


Currently I carry my blocklists in multiple flavors, including RPZ format, Domains Format, Filter Format, and Unbound Zone Format:


In addition, I have a No Bypass list that blocks most known DoT, DoH, VPN, and Proxy service by hostname format. At some point in the near future I will provide lists for blocking these by IP address as well. Soon I will also update my skynet filter list to include new places I have added to mine.
 
Last edited:
Unfortunately not. That's why @SomeWhereOverTheRainBow and I put our own lists together using the various levels of blocklists we feel comfortable with. Simply point skynet to the custom blocklist url of your choice (or make your own) and profit!
I had similar question too. I try to custom a list locally but failed. It seems Skynet only take main list from internet?

Recently I cannot login to a local shopping apps because their IP is blocked by one of the list
Code:
/mnt/amtm/skynet/lists/blocklist_net_ua.ipset:143.92.75.65

I use a dumb way to clear it using cronjob everyday right after skynet update.
Code:
if [ "$(ipset test Skynet-Blacklist 143.92.75.65 2>/dev/null ; echo $?)" -eq "0" ]; then
   ipset del Skynet-Blacklist 143.92.75.65 2>/dev/null
   logger -st "Skynet" "Delete Skynet-Blacklist for Shopee"
fi

Code:
Dec 15 12:28:00 RT-AC86U-DBA8 Skynet: Delete Skynet-Blacklist for Shopee
Dec 15 13:00:05 RT-AC86U-DBA8 Skynet: [#] 178010 IPs (-1) -- 9037 Ranges Banned (+0) || 9406 Inbound -- 104 Outbound Connections Blocked! [save] [4s]
 
Question for anyone.... so I'm trying to go back to the Filehol 1 list:
Code:
https://iplists.firehol.org/files/firehol_level1.netset
&
Code:
https://raw.githubusercontent.com/ktsaou/blocklist-ipsets/master/firehol_level1.netset

But I keep getting this error thru Skynet:, when trying either link above:
Code:
[i] Custom Filter Detected: https://iplists.firehol.org/files/firehol_level1.netset
[i] Downloading filter.list         | [0s]
[i] Refreshing Whitelists           | [64s]
[i] Consolidating Blacklist         | curl: no URL specified!
curl: try 'curl --help' for more information
[2s]
[*] List Content Error Detected - Stopping Banmalware

I'm sure it's user error but am I putting the list incorrect?

Curl version currently shows:
Code:
@GT-AX11000-4xx0:/tmp/home/root# /opt/bin/curl --version
curl 7.83.1 (aarch64-openwrt-linux-gnu) libcurl/7.83.1 OpenSSL/1.1.1q zlib/1.2.12
Release-Date: 2022-05-11
Protocols: file ftp ftps http https imap imaps mqtt pop3 pop3s rtsp smtp smtps tftp
Features: alt-svc HSTS HTTPS-proxy IPv6 Largefile libz SSL
Easy fix, here @Kingp1n! In that file you published out on github... get rid of that, and simply create a file called "KingP1nsBlocklist.txt" or something of the sort... In that text file, add an entry to that single firehol reference:

Code:
https://iplists.firehol.org/files/firehol_level1.netset

Then, from skynet, reference your newly created blocklist file:

Code:
https://raw.githubusercontent.com/ktsaou/blocklist-ipsets/master/KingP1nsBlocklist.txt
 
Easy fix, here @Kingp1n! In that file you published out on github... get rid of that, and simply create a file called "KingP1nsBlocklist.txt" or something of the sort... In that text file, add an entry to that single firehol reference:

Code:
https://iplists.firehol.org/files/firehol_level1.netset

Then, from skynet, reference your newly created blocklist file:

Code:
https://raw.githubusercontent.com/ktsaou/blocklist-ipsets/master/KingP1nsBlocklist.txt
For those who don't have github account or web server, is there a way to make it accept KingP1nsBlocklist.txt locally in jffs or usb drive?
 
For those who don't have github account or web server, is there a way to make it accept KingP1nsBlocklist.txt locally in jffs or usb drive?
Not that I know of... it needs to be a url of some sort, so you would need to find some place that will allow you to host a file like this out there somewhere. Github is a great place for something like this, since it's free and easy to use.
 
You mind sharing the roblox you whitelisted?
Will do when i'm home, remind me if I forget in a pm. Was a false positive I got ages ago.
 

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top