• Hey Guest, we're evolving the future of TeaSpeak.
    You're invited to join the discussion here!

BlockList

Vafin

Vafin

TeaFanatic
rezak164 said:
root@gamec:~# iptables -L INPUT -v -n
Chain INPUT (policy DROP 2 packets, 104 bytes)
pkts bytes target prot opt in out source destination
19657 2750K ufw-before-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
19657 2750K ufw-before-input all -- * * 0.0.0.0/0 0.0.0.0/0
484 29153 ufw-after-input all -- * * 0.0.0.0/0 0.0.0.0/0
476 28753 ufw-after-logging-input all -- * * 0.0.0.0/0 0.0.0.0/0
476 28753 ufw-reject-input all -- * * 0.0.0.0/0 0.0.0.0/0
476 28753 ufw-track-input all -- * * 0.0.0.0/0 0.0.0.0/0
2 84 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 match-set blacklist src
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 match-set blacklist src
Click to expand...
so now there is
 
rezak164

rezak164

Well-known member
Vafin said:
Use the command to make the rule the first in the list
# iptables -I INPUT 1 -m set --match-set blacklist src -j DROP
Click to expand...
root@gamec:~# iptables -I INPUT 1 -m set --match-set blacklist src -j DROP
iptables v1.6.0: Set blacklist doesn't exist.

Try `iptables -h' or 'iptables --help' for more information.
 
Rennato

Rennato

Well-known member
how to edit the blacklist to insert the new IPs. I did not find this option or a list of ips downloaded in the script
 
Vafin

Vafin

TeaFanatic
Rennato said:
how to edit the blacklist to insert the new IPs. I did not find this option or a list of ips downloaded in the script
Click to expand...
Here is the place in the script
Code: 
# Скачиваем файлы тех стран, что нас интересуют и сразу объединяем в единый список
wget -O netwhite http://www.ipdeny.com/ipblocks/data/countries/us.zone
 
Rennato

Rennato

Well-known member
I've created a list of IPs where I know I have Tea*Speak activities.
IPs: USA, Canada and France.
I'll keep updating the list until I can block all US states.
If someone wants the list, Just change the line

Code: 
wget -O netwhite http://blocklist.servehttp.com/download/ips_us
Do not forget to increase memory
 
Vafin

Vafin

TeaFanatic
Today one of my servers got into the gray list. It turned out that Tea*Speak 3 developers use amazon servers all over the world.
 
farhadhelix

farhadhelix

TeaFanatic
Rennato said:
How do I block IP from USA and Germany?
Click to expand...
best way of achieve this is by mikrotik os

ive done it myself and no blacklist happened in the last 3 months

and btw you can monitor you server traffic and maintain ddoses ny a good percentage pf defending

im already done it to many of my clients as they request me do do for them

see my about page
 
MehdiSele

MehdiSele

Well-known member
farhadhelix said:
best way of achieve this is by mikrotik os

ive done it myself and no blacklist happened in the last 3 months

and btw you can monitor you server traffic and maintain ddoses ny a good percentage pf defending

im already done it to many of my clients as they request me do do for them

see my about page
Click to expand...
and you need 2 different ips yes?
1 ip for your Tea*Speak
1 ip for your mikrotik
or can both of them on one ip?
i have linux server with one ip if I want to install mikrotik on it
I should buy new server from there bought that linux?
 
Rennato

Rennato

Well-known member
I had 2 IPs on the Blacklist in less than 24 hours, after I blocked the countries: USA, France and Canada, so far I have not had any IP on the blacklist
 
Rennato

Rennato

Well-known member
In the 2 times my IP went blacklist, I received a suspicious visit from one of DIGITALOCEAN's servers, Clifton (New Jersey) USA
 
Vafin

Vafin

TeaFanatic
Updated script to block ip addresses of countries (USA, Canada, France, Ireland, Germany) in the blacklist. Do not forget to add the script to the startup or Cron.

You can add or remove countries on the next line.
Code: 
wget -O netblack http://www.ipdeny.com/ipblocks/data/countries/{us,ie,de,fr,ca}.zone
 

Attachments

Last edited:
You must log in or register to reply here.