Hello, * Roque <roque@xxxxxxxx> 22. Apr 04: > I need to ban a number of IPŽs that are posted in a plain text file on > a web site; the file changes every 30Min. The file is as simple as > > banned-ip1 #Reason1 > banned-ip2 #Reason > ... > > The url can be reached in this way: http://www.url.com/ip/banned.txt WARNING: this is very, very bad! Don't insert rules automatic from an untrusted source (anything outside of your net _is_ untrusted). Said this... > I have read the iptables man pages and havenŽt seen nothing similar. > Is it really posible to do so? # iptables -N banned_ips 2>/dev/null # iptables -F banned_ips # wget --output-document=- http://www.url.com/ip/banned.txt | > while read ip reason > iptables -A banned_ips -d $ip -j REJECT > done Repeat this every 30min by cron. Insert the chain banned_ips whereever you need it (likely in your FORWARD). HTH, regards, Frank. -- Sigmentation fault
