tzvetkoff/bandb
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
1 commit 1 branch 0 tags 34 KiB
  • Shell 100%
Find a file
Exact
Latchezar Tzvetkoff aef9529217 blah
2026-01-28 14:19:28 +02:00
.gitignore blah 2026-01-28 14:19:28 +02:00
bandb blah 2026-01-28 14:19:28 +02:00
bandb.service blah 2026-01-28 14:19:28 +02:00
bandb.tmpfiles blah 2026-01-28 14:19:28 +02:00
README.md blah 2026-01-28 14:19:28 +02:00

README.md

bandb

A stupid iptables helper for persistent ban database.

Concept

This is mainly intended to satisfy my own needs since I use iptables.service (/etc/iptables/ip*tables.rules) and sshguard.

Since sshguard does not provide an easy way to permanently ban addresses/networks, I decided to add one more chain to the rule set.

Installation

You'd need to add this rule to your *filter table at an earliest as possible convenient place:

:bandb - [0:0]
-A INPUT -j bandb

Script/service installation is as simple as:

install -Dm755 bandb /usr/bin/bandb
install -Dm644 bandb.service /usr/lib/systemd/system/bandb.service
systemctl daemon-reload
systemctl enable bandb.service
systemctl start bandb.service