diff options
| author |  Christian Hesse <mail@eworm.de> | 2023-06-09 16:03:45 +0200 |
|---|---|---|
| committer | Christian Hesse <mail@eworm.de> | 2023-06-13 20:26:55 +0200 |
| commit | 458fe7c08857afa841feb018ac29780b3e4496a9 (patch) | |
| tree | cdaab1c34ebb2896f7dd7cc45df05b400231b31e | |
| parent | 3c61cf57c4ab5cef8e41185b4e8a85b788d60788 (diff) | |
fw-addr-lists: prepare lists from spamhaus.org in config
| -rw-r--r-- | doc/fw-addr-lists.md | 3 | ||||
| -rw-r--r-- | global-config.rsc | 4 |
2 files changed, 6 insertions, 1 deletions
diff --git a/doc/fw-addr-lists.md b/doc/fw-addr-lists.md index 4328776..5805905 100644 --- a/doc/fw-addr-lists.md +++ b/doc/fw-addr-lists.md @@ -13,7 +13,8 @@ This script downloads, imports and updates firewall address-lists. Its main purpose is to block attacking ip addresses, spam hosts, command-and-control servers and similar malicious entities. The default configuration contains lists from [abuse.ch](https://abuse.ch/) and -[dshield.org](https://dshield.org/). +[dshield.org](https://dshield.org/), and +lists from [spamhaus.org](https://spamhaus.org/) are prepared. The address-lists are updated in place, so after initial import you will not see situation when the lists are not populated. diff --git a/global-config.rsc b/global-config.rsc index 8fe4761..e82170c 100644 --- a/global-config.rsc +++ b/global-config.rsc @@ -95,6 +95,10 @@ cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" }; { url="https://www.dshield.org/block.txt"; cidr="/24"; cert="R3" }; +# { url="https://www.spamhaus.org/drop/drop.txt"; +# cert="Cloudflare Inc ECC CA-3" }; +# { url="https://www.spamhaus.org/drop/edrop.txt"; +# cert="Cloudflare Inc ECC CA-3" }; }; }; :global FwAddrListTimeOut 1d; |