Differences

This shows you the differences between two versions of the page.

--- geoip_iptables_blocking [2016/03/08 14:59] – admin
+++ geoip_iptables_blocking [2019/05/08 19:37] – admin
@@ Line 1: / Line 1: @@
 =====GeoIP for use with iptables (Debian 8 Jessie)=====
+OUTDATED. MAXMIND stuff has changed. needs rework.
 ===install necessary software===
@@ Line 43: / Line 45: @@
 </code>
-===Bug hunting===
+===Check your success===
-(was on an arm machine, Linux hostname 3.16.0-4-kirkwood #1 Debian 3.16.7-ckt20-1+deb8u4 (2016-02-29) armv5tel GNU/Linux)
+Lets take a look at the attack statistics
+{{ ::attack_stats.png |}}
+phew, 0 attacks since i use GeoIP Tables blocking. I don't need my blocklist.de account anymore. At least not for SSH attacks.
+-------------------------------
+Samesame for raspian on raspberry
+Install linux kernel headers
+<code>
+apt-get update && sudo apt-get install git bc libncurses5-dev libtext-csv-xs-perl autoconf automake libtool xutils-dev iptables-dev -y
+wget https://raw.githubusercontent.com/notro/rpi-source/master/rpi-source -O /usr/bin/rpi-source && sudo chmod +x /usr/bin/rpi-source && /usr/bin/rpi-source -q --tag-update
+cd ~
+rpi-source
+</code>
+Install xtables-addons
+<code>
+git clone git://git.code.sf.net/p/xtables-addons/xtables-addons
+cd xtables-addons
+./autogen.sh
+./configure
+make -j5
+make install
+depmod
+reboot
+cat /proc/net/ip_tables_matches
-<code>cat /proc/net/ip_tables_matches
-limit
 conntrack
 conntrack
 conntrack
 multiport
+geoip
 udplite
 udp
 tcp
 icmp
-</code>
-no geoip, thats not cool.
-Solution:
-<code>
-aptitude install module-assistant
-module-assistant --verbose --text-mode auto-install xtables-addons
 </code>