yanistyle/AS_Network_List
1
0
Fork 0
mirror of https://github.com/C24Be/AS_Network_List.git synced 2026-01-25 23:35:41 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix iptables drop -> new

Browse Source
This commit is contained in:
C24Be
2025-12-11 15:40:39 +01:00
committed by GitHub
parent 891e0f8d24
commit 3c218bd629
1 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
blacklists_updater_iptables.sh
View File

@@ -38,8 +38,8 @@ generate_ipset_config() {
# ipset restore < $(basename ${output_file})
#
# 2. Use with iptables/ip6tables:
# iptables -I INPUT -m set --match-set ${set_name} src -j DROP
# iptables -I FORWARD -m set --match-set ${set_name} src -j DROP
# iptables -I INPUT -m set --match-set ${set_name} src -m conntrack --ctstate NEW -j DROP
# iptables -I FORWARD -m set --match-set ${set_name} src -m conntrack --ctstate NEW -j DROP
#
# 3. To flush/delete the set:
# ipset flush ${set_name}
@@ -75,10 +75,10 @@ cat > "${iptables_output_file}" << EOF
# ipset restore < $(basename ${iptables_output_file})
#
# 2. Use with iptables/ip6tables:
# iptables -I INPUT -m set --match-set blacklist-v4 src -j DROP
# iptables -I FORWARD -m set --match-set blacklist-v4 src -j DROP
# ip6tables -I INPUT -m set --match-set blacklist-v6 src -j DROP
# ip6tables -I FORWARD -m set --match-set blacklist-v6 src -j DROP
# iptables -I INPUT -m set --match-set blacklist-v4 src -m conntrack --ctstate NEW -j DROP
# iptables -I FORWARD -m set --match-set blacklist-v4 src -m conntrack --ctstate NEW -j DROP
# ip6tables -I INPUT -m set --match-set blacklist-v6 src -m conntrack --ctstate NEW -j DROP
# ip6tables -I FORWARD -m set --match-set blacklist-v6 src -m conntrack --ctstate NEW -j DROP
#
# 3. To flush/delete the sets:
# ipset flush blacklist-v4 && ipset destroy blacklist-v4