Menu
▾
▴
Re: [Astlinux-devel] Using APIBAN in Astlinux
|
From: Lonnie A. <li...@lo...> - 2021-10-22 14:41:52
|
Update, The APIBAN folks have added a new ipset API [1]. This greatly simplifies things, no gathering JSON elements 250 IPs at a time, instead it is a simple text download (with a valid apikey). Also the ban list can be retrieved with one HTTPS session, not N+1 for each 250 IPs. Re-add 'apiban' support to reload-blocklist-netset using new ipset API https://github.com/astlinux-project/astlinux/commit/ab9127a6d86809caaeb903004b39a616deced5a5 The previous apiban-netset PHP script is now removed. If you have an AstLinux 1.4.3 or earlier system, you could copy the latest 'reload-blocklist-netset' to /mnt/kd/bin/ and reference it from crontab. No helper PHP script needed. reload-blocklist-netset: https://github.com/astlinux-project/astlinux/blob/master/package/arnofw/reload-blocklist-netset BTW, we will shortly be offering a AstLinux 1.4.4 pre-release including this feature. Lonnie [1] https://apiban.org/doc.html > On Oct 15, 2021, at 2:25 PM, Lonnie Abelbeck <li...@lo...> wrote: > > APIBAN support has been added to what will be AstLinux 1.4.4 > > https://github.com/astlinux-project/astlinux/commit/5f2b315f302805cf73218a1dcf332f130abc328d > > Updated Docs: > https://doc.astlinux-project.org/userdoc:tt_firewall_external_block_list#updating_netset_blocklists > > Thanks for the suggestion, we can test to see how it works. > > Lonnie > >> On Oct 13, 2021, at 4:23 PM, Michael Knill <mic...@ip...> wrote: >> >> APIBAN looks very interesting. There will be a session on it at Astricon this year as well. >> I assume that banned IP addresses could just be pulled into a netset list? >> >> https://apiban.org/doc.html >> https://www.securevoip.io/48-hours-with-apiban/ >> >> Regards >> >> Michael Knill >> Managing Director >> >> D: +61 2 6189 1360 >> P: +61 2 6140 4656 >> E: mic...@ip... >> W: ipcsolutions.com.au >> >> <image001.png> >> Smarter Business Communications >> >> _______________________________________________ >> Astlinux-devel mailing list >> Ast...@li... >> https://lists.sourceforge.net/lists/listinfo/astlinux-devel > > > > _______________________________________________ > Astlinux-devel mailing list > Ast...@li... > https://lists.sourceforge.net/lists/listinfo/astlinux-devel > > |
