yanistyle/AS_Network_List
1
0
Fork 0
mirror of https://github.com/C24Be/AS_Network_List.git synced 2026-01-24 15:06:17 +03:00
Code Issues Packages Projects Releases Wiki Activity
1,946 Commits 1 Branch 0 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
C24Be 53f07e0822 Update 2026.01.24 06:23:23
2026-01-24 06:23:23 +00:00
.github
Updated README.md with short scripts descriptions (#23)
2026-01-12 12:13:38 +01:00
auto
Update 2026.01.18 12:58:50
2026-01-18 12:58:51 +00:00
blacklists
Update 2026.01.24 06:23:23
2026-01-24 06:23:23 +00:00
blacklists_iptables
Update 2026.01.24 06:23:23
2026-01-24 06:23:23 +00:00
blacklists_nftables
Update 2026.01.24 06:23:23
2026-01-24 06:23:23 +00:00
blacklists_nginx
Update 2026.01.24 06:23:23
2026-01-24 06:23:23 +00:00
lists
blacklists_updater.sh
2024-03-04 01:41:29 +01:00
pylib
RIPE DB
2024-03-03 23:40:11 +01:00
.gitignore
whois
2024-03-03 12:47:32 +01:00
blacklists_updater_iptables.sh
iptables
2026-01-01 18:33:41 +01:00
blacklists_updater_nftables.sh
Add nftables support with config generator and IP checker (#22)
2026-01-12 10:46:07 +01:00
blacklists_updater_nginx.sh
README, nginx, iptables, vk, mail.ru
2025-10-23 12:17:01 +02:00
blacklists_updater_txt.sh
m100 - mail.ru
2025-10-23 12:29:49 +02:00
check_nft_blacklist.py
Add nftables support with config generator and IP checker (#22)
2026-01-12 10:46:07 +01:00
generate_nft_blacklist.py
Add nftables support with config generator and IP checker (#22)
2026-01-12 10:46:07 +01:00
get_description.py
whois
2024-03-03 17:51:12 +01:00
get_info_from_ripe.py
whois
2024-03-03 12:56:16 +01:00
LICENSE
Initial commit
2024-02-29 14:35:24 +01:00
network_list_from_as.py
whois resolve details
2024-03-03 15:36:43 +01:00
network_list_from_netname.py
RIPE DB
2024-03-03 23:40:11 +01:00
parse_ripe_db.py
RIPE DB
2024-03-03 23:51:32 +01:00
README.md
Updated README.md with short scripts descriptions (#23)
2026-01-12 12:13:38 +01:00
requirements.sh
README, nginx, iptables, vk, mail.ru
2025-10-23 12:17:01 +02:00
requirements.txt
Add the script to get list of the networks from network names
2024-03-01 10:55:02 +01:00

README.md

Russian government agencies and their associated networks.

Blacklists are updated daily!

This repository contains Python scripts that allow you to retrieve network lists based on either an Autonomous System (AS) name or a Network name. Also you can download and parse the whole RIPE database to get information about Networks for the further analysis.

Ready-to-use blacklists in multiple formats:

Files and features

Core Scripts

  • network_list_from_as.py: Retrieves a list of networks associated with a given AS name.
  • network_list_from_netname.py: Retrieves a list of networks associated with a given Network name.
  • get_info_from_ripe.py: Retrieves information about Russian AS numbers and Networks from RIPE database for the further analysis.
  • get_description.py: Retrieves network names, AS names and organisation names from RIPE. Updates the lists in the folder auto/.
  • parse_ripe_db.py: Parses the whole RIPE database to get information about Networks for the further analysis.
  • generate_nft_blacklist.py: Takes text blacklist on the input and generates nftables config with sets.
  • check_nft_blacklist.py: Checks IPv4/IPv6 address against generated nftables config.

Blacklist Generators

  • blacklists_updater_txt.sh: Generates text-based blacklists with IPv4/IPv6 separation
  • blacklists_updater_nginx.sh: Generates nginx configuration files with deny directives
  • blacklists_updater_iptables.sh: Generates ipset configuration files for iptables/ip6tables

Generated Blacklists

Text Format (blacklists/ folder):

  • blacklist.txt: Mixed IPv4/IPv6 blacklist (daily generated)
  • blacklist-v4.txt: IPv4-only blacklist (daily generated)
  • blacklist-v6.txt: IPv6-only blacklist (daily generated)
  • blacklist_with_comments.txt: Blacklist with network metadata (daily generated)

Nginx Format (blacklists_nginx/ folder):

  • blacklist.conf: Nginx deny rules for mixed IPv4/IPv6 (daily generated)
  • blacklist-v4.conf: Nginx deny rules for IPv4 only (daily generated)
  • blacklist-v6.conf: Nginx deny rules for IPv6 only (daily generated)
  • README.md: Complete usage documentation for nginx integration

IPTables/IPSet Format (blacklists_iptables/ folder):

  • blacklist.ipset: IPSet configuration for mixed IPv4/IPv6 (daily generated)
  • blacklist-v4.ipset: IPSet configuration for IPv4 only (daily generated)
  • blacklist-v6.ipset: IPSet configuration for IPv6 only (daily generated)
  • README.md: Complete usage documentation for iptables integration

nftables Format (blacklists_nftables/ folder):

  • blacklist.nft: nftables configuration for mixed IPv4/IPv6 (daily generated)
  • blacklist-v4.nft: nftables configuration for IPv4 only (daily generated)
  • blacklist-v6.nft: nftables configuration for IPv6 only (daily generated)
  • README.md: Complete usage documentation for nftables integration

Reference Lists

Contributors are welcome!

  • lists/ru-gov-netnames.txt: A list of network names associated with the Russian government.
  • lists/ru-gov-asns.txt: A list of AS numbers associated with the Russian government.

Auto-Generated Data

  • auto/all-ru-*.txt: Monthly generated lists of all Russian networks and ASNs
  • auto/ripe-ru-*.txt: Weekly generated lists of Russian networks from RIPE database
image

These scripts have been tested on MacOS, FreeBSD and Linux.

Quick Start

Using Pre-Generated Blacklists

No setup required! Just download and use:

For Nginx:

# Download and include in your nginx configuration
wget https://raw.githubusercontent.com/C24Be/AS_Network_List/main/blacklists_nginx/blacklist.conf
# Then add to your nginx config: include /path/to/blacklist.conf;

For IPTables/IPSet:

# Download and load into ipset
wget https://raw.githubusercontent.com/C24Be/AS_Network_List/main/blacklists_iptables/blacklist.ipset
ipset restore < blacklist.ipset
iptables -I INPUT -m set --match-set blacklist-v4 src -j DROP
ip6tables -I INPUT -m set --match-set blacklist-v6 src -j DROP

For nftables:

# Download and load into nftables
wget https://raw.githubusercontent.com/C24Be/AS_Network_List/main/blacklists_nftables/blacklist.nft
sudo nft -f blacklist.nft
# View the loaded rules
sudo nft list ruleset

For Custom Applications:

# Download plain text blacklist
wget https://raw.githubusercontent.com/C24Be/AS_Network_List/main/blacklists/blacklist.txt

See the README files in each folder for detailed usage instructions.

Prerequisites

Installation

  1. Clone this repository:

    git clone https://github.com/C24Be/AS_Network_List.git

  2. Navigate to the repository folder:

    cd AS_Network_List

  3. Install the required Python packages:

    ./requirements.sh

    If this step causes issue PEP 668 due to python version >=3.12 and you're unfamiliar with virtual environments, use this workaround:

    pip install -r requirements.txt --break-system-packages

Usage

network_list_from_as.py

  1. Run the script with the AS number as an argument:

    ./network_list_from_as.py AS61280

  2. Run the script with a URL to a file in a GitHub repository as an argument:

    ./network_list_from_as.py https://github.com/C24Be/AS_Network_List/blob/main/lists/ru-gov-asns.txt

    Or better use the raw file link:

    ./network_list_from_as.py https://raw.githubusercontent.com/C24Be/AS_Network_List/main/lists/ru-gov-asns.txt

  3. To display a help message, use the -h or --help switch:

    ./network_list_from_as.py --help

network_list_from_netname.py

  1. Run the script with a file containing a list of network names as an argument:

    ./network_list_from_netname.py lists/ru-gov-netnames.txt

  2. Run the script with a URL to a file in a GitHub repository as an argument:

    ./network_list_from_netname.py https://github.com/C24Be/AS_Network_List/blob/main/lists/ru-gov-netnames.txt

    Or better use the raw file link:

    ./network_list_from_netname.py https://raw.githubusercontent.com/C24Be/AS_Network_List/main/lists/ru-gov-netnames.txt

  3. To display a help message, use the -h or --help switch:

    ./network_list_from_netname.py --help

generate_nft_blacklist.py

  1. Generate nftables config from blacklist:

    ./generate_nft_blacklist.py blacklists/blacklist.txt blacklist.nft

check_nft_blacklist.py

  1. Check IP address against generated config:

    ./check_nft_blacklist.py blacklist.nft 77.37.166.239

Screenshots

image image

Automated Workflows

This repository uses GitHub Actions to automatically update blacklists:

  • Daily Updates: update_blacklists.yml - Updates all blacklist formats (text, nginx, iptables)
  • Monthly Updates: update_ru_all_lists.yml - Updates comprehensive Russian network lists
  • Weekly Updates: parse_ripe_database.yml - Parses RIPE database for Russian networks
  • Network Resolution: resolve_networks.yml - Resolves network names and descriptions

All blacklists are automatically regenerated and committed to ensure you always have the latest data.

Blacklist Format Comparison

Format Best For Performance Ease of Use File Size
Text Custom scripts, analysis N/A Small
Nginx Web servers, reverse proxies Good Medium
IPSet Firewalls, large-scale blocking Excellent Medium

Recommendation: Use IPSet for firewall-level blocking (best performance), Nginx for web application layer, and text format for custom integrations.

Additional information

Contributing

We welcome contributions! Feel free to submit a pull request or open an issue.

Description
Blacklists generator of subnets of Russian government agencies for blocking them on one's servers.
Readme BSD-2-Clause 138 MiB
Languages
Python 69.2%
Shell 30.8%