readme files

2026-04-04 16:48:52 +03:00 · 2026-03-26 10:34:02 +01:00
parent 17d64070c6
commit 3922acb075
14 changed files with 1136 additions and 50 deletions
--- a/blacklists_nftables/blacklist-vk-v4.nft
+++ b/blacklists_nftables/blacklist-vk-v4.nft
@@ -1,18 +1,18 @@
 # Autogenerated nftables blacklist
-# Generated: 2026-03-26T08:47:07.112845Z
-# Source: /home/runner/work/AS_Network_List/AS_Network_List/blacklists/blacklist-vk-v4.txt
-# IPv4: 92, IPv6: 0
+# Generated: 2026-03-26T09:30:12.562983Z
+# Source: /Users/oleg/DocsOS/C24Be/AS_Network_List/blacklists/blacklist-vk-v4.txt
+# IPv4: 86, IPv6: 0
 #
 # Usage:
 #   sudo nft -f <this-file>
 #   # VK egress blocking for VPN clients via NAT/FORWARD
 #   sudo nft add chain inet filter forward '{ type filter hook forward priority 0; policy accept; }'
-#   sudo nft add rule inet filter forward iifname "<VPN_IFACE>" ip daddr @blacklist_v4 counter reject
-#   sudo nft add rule inet filter forward iifname "<VPN_IFACE>" ip6 daddr @blacklist_v6 counter reject
+#   sudo nft add rule inet filter forward iifname "<VPN_IFACE>" ip daddr @blacklist_vk_v4 counter reject
+#   sudo nft add rule inet filter forward iifname "<VPN_IFACE>" ip6 daddr @blacklist_vk_v6 counter reject

 table inet filter {

-    set blacklist_v4 {
+    set blacklist_vk_v4 {
        type ipv4_addr
        flags interval
        elements = {
@@ -56,7 +56,6 @@ table inet filter {
            90.156.212.0/22,
            90.156.216.0/22,
            90.156.232.0/21,
-            91.219.224.0/22,
            91.231.132.0/22,
            91.237.76.0/24,
            93.153.255.84/30,
@@ -98,11 +97,6 @@ table inet filter {
            193.203.40.0/22,
            194.84.16.12/30,
            195.211.20.0/22,
-            212.111.84.0/22,
-            212.233.72.0/21,
-            212.233.88.0/21,
-            212.233.96.0/22,
-            212.233.120.0/22,
            213.219.212.0/22,
            217.16.16.0/20,
            217.20.144.0/20,
@@ -111,7 +105,7 @@ table inet filter {
        }
    }

-    set blacklist_v6 {
+    set blacklist_vk_v6 {
        type ipv6_addr
        flags interval
    }
@@ -122,6 +116,6 @@ table inet filter {

        ct state { established, related } accept

-        ip saddr @blacklist_v4 counter drop
+        ip saddr @blacklist_vk_v4 counter drop
    }
 }