Hi,
just write a little script and call it by a cronjob every 30 minutes or so.
I assume your banlistfile is splitted into 2 or more tables (as you show), like:
192.168.0.3 #comment 1
10.10.3.2 #comment 2
192.168.44.2 #comment 3
and so on.
So take a look at this (very simple) script (if you've more iptables rules, you've to change the script, of course):
#!/bin/bash
banfile="/path/to/banlist.txt"
iptables -F
iptables -Z
for ip in `cat $banfile | awk '{print $1}'`; do
iptables -A INPUT -s $ip -j DROP
done
That's all.
Best regards,
Thomas
On Thu, 22 Apr 2004 17:47:19 +0100
Roque <roque@xxxxxxxx> wrote:
> Hi all, i wonder if someone could help me with a little problem ...
> I need to ban a number of IP´s that are posted in a plain text file on
> a web site; the file changes every 30Min. The file is as simple as
>
> banned-ip1 #Reason1
> banned-ip2 #Reason
> ...
>
> The url can be reached in this way: http://www.url.com/ip/banned.txt
>
> I have read the iptables man pages and haven´t seen nothing similar.
> Is it really posible to do so?
> Thanks in Advance. roque@xxxxxxxx
