M0n0ban
This is a quick script I stuck together to help me quickly ban IP addresses using my M0n0wall. I run this script from my Mac, however I needed to install wget in order to get it to work. I used info and code from this page to put this together: http://wiki.m0n0.ch/wikka.php?wakka=PoorMansTimeBasedRules
To run the script: /usr/bin/m0n0ban.command 200.xxx.xxx.xxx
#!/bin/bash#/usr/bin/m0n0ban.command badIP=$1 echo "~*~*~*~*~*" echo " Are you sure you want to ban "$badIP"?"; echo " Press enter to continue os CTRL+C to quit"; echo "~*~*~*~*~*" read Echo "Banning "$badIP wget -qO /dev/null http://10.0.0.1/exec_raw.php?cmd="ipfw add 5 deny all from $badIP to any" echo "Complete..." echo "Current ruleset:" wget -nv -O ~/banned.txt http://10.0.0.1/exec_raw.php?cmd="ipfw show 5" -q cat ~/banned.txt
The command line interaction looks like this:
pine$ ./m0n0ban.command 201.216.x.205 ~*~*~*~*~* Are you sure you want to ban 201.216.xx.205? Press enter to continue os CTRL+C to quit ~*~*~*~*~* Banning 201.216.xx.205 Complete... Current ruleset: 00005 0 0 deny ip from 200.129.xx.107 to any 00005 0 0 deny ip from 218.108.xx.121 to any 00005 0 0 deny ip from 201.216.xx.205 to any
No Comments »
RSS feed for comments on this post. TrackBack URL
