aboutsummaryrefslogtreecommitdiffstats
path: root/global-config.rsc
diff options
context:
space:
mode:
authorGravatar Christian Hesse <mail@eworm.de>2023-06-13 20:28:25 +0200
committerGravatar Christian Hesse <mail@eworm.de>2023-06-13 20:28:25 +0200
commit3358dcb0e7a8392c082782bd00077ee502c66968 (patch)
tree8660a5263935fb87d016a9870a976448d5e4b6e1 /global-config.rsc
parent196fe1b0109ff42c9df52a5f8b2314aeff65cd5f (diff)
parent94b07600baff987161e4f661ff14bddeef9a6174 (diff)
Merge branch 'fw-addr-lists' into next
Diffstat (limited to 'global-config.rsc')
-rw-r--r--global-config.rsc23
1 files changed, 23 insertions, 0 deletions
diff --git a/global-config.rsc b/global-config.rsc
index b17d25c..e82170c 100644
--- a/global-config.rsc
+++ b/global-config.rsc
@@ -80,6 +80,29 @@
:global BackupUploadUser "mikrotik";
:global BackupUploadPass "v3ry-s3cr3t";
+# This defines the settings for firewall address-lists (fw-addr-lists).
+:global FwAddrLists {
+# "allow"={
+# { url="https://eworm.de/ros/fw-addr-lists/allow";
+# cert="R3" };
+# };
+ "block"={
+# { url="https://eworm.de/ros/fw-addr-lists/block";
+# cert="R3" };
+ { url="https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt";
+ cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" };
+ { url="https://sslbl.abuse.ch/blacklist/sslipblacklist.txt";
+ cert="GlobalSign Atlas R3 DV TLS CA 2022 Q3" };
+ { url="https://www.dshield.org/block.txt"; cidr="/24";
+ cert="R3" };
+# { url="https://www.spamhaus.org/drop/drop.txt";
+# cert="Cloudflare Inc ECC CA-3" };
+# { url="https://www.spamhaus.org/drop/edrop.txt";
+# cert="Cloudflare Inc ECC CA-3" };
+ };
+};
+:global FwAddrListTimeOut 1d;
+
# This defines what log messages to filter or include by topic or message
# text. Regular expressions are supported. Do *NOT* set an empty string,
# that will filter or include everything!
generated by cgit v1.2.3-70-g09d2 (git 2.47.0) at 2024-11-02 23:54:20 +0000