Hello,
is there anyone who have experience applying blocklists/banlists in Linux iptables?
From time to time, there is some nasty abuse that i like to report. So there are some blocklists/bad ip lists which supports API/requests.:
https://www.abuseipdb.com/report
https://www.myip.ms/info/memberarea
https://www.badips.com/documentation
Here are two scripts that can populate iptables with bad IPs from BadIPs.com blocklist:
https://gist.github.com/Aikhjarto/68ce0a59e6138609dab8 - Fetch a list of known brute force attackers from badips.com and apply/update iptables DROP rules
https://gist.github.com/mtompkins/e20fff22e2eeefd0a80f - add IPs from badips.com to iptables.
---
Other interesting way to get rid of bad IPs on PHP/webserver level is https://maikuolan.github.io/CIDRAM/ , wp plugin
Do you know better lists, ways to ban in Linux?
Bookmarks