I download an ip country list. By using a menu system I can enter the country TLD and block all of the ip address' listed for it. I parse the list for the country I wish to block then create a blacklist for Shorewall from that list. I also can do class A-C, or a /32 the same way.
I block only port 25 access this way. It is a bit low tech but my spam count has dropped quite a bit. Shorewall is the my first line network protection. I have used it for years -- still a novice. --john -----Original Message----- From: Tom Eastep [mailto:[email protected]] Sent: Friday, January 06, 2012 12:00 AM To: [email protected]; Shorewall Users Subject: Re: [Shorewall-users] Blocking countries with shorewall On Jan 5, 2012, at 3:37 PM, Timothy Murphy wrote: > I'm currently getting a huge number of (failed) attempts to access my > home server at UDP port 27845. > I think most if not all the attacks come from China or Korea. > > I see there is a list of Chinese and Korean networks at > <http://www.countryipblocks.net/country-blocks/>. > > Is there a standard way of using such a list in shorewall? > No. -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex infrastructure or vast IT resources to deliver seamless, secure access to virtual desktops. With this all-in-one solution, easily deploy virtual desktops for less than the cost of PCs and save 60% on VDI infrastructure costs. Try it free! http://p.sf.net/sfu/Citrix-VDIinabox _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
