Differences

This shows you the differences between two versions of the page.

--- geoip_iptables_blocking [2016/03/08 15:29] – admin
+++ geoip_iptables_blocking [2019/05/08 19:37] – admin
@@ Line 1: / Line 1: @@
 =====GeoIP for use with iptables (Debian 8 Jessie)=====
+OUTDATED. MAXMIND stuff has changed. needs rework.
 ===install necessary software===
@@ Line 43: / Line 45: @@
 </code>
-===Bug hunting===
+===Check your success===
-(was on an arm machine, Linux hostname 3.16.0-4-kirkwood #1 Debian 3.16.7-ckt20-1+deb8u4 (2016-02-29) armv5tel GNU/Linux)
-<code>cat /proc/net/ip_tables_matches
+Lets take a look at the attack statistics
-limit
-conntrack
+{{ ::attack_stats.png |}}
-conntrack
-conntrack
+phew, 0 attacks since i use GeoIP Tables blocking. I don't need my blocklist.de account anymore. At least not for SSH attacks.
-multiport
-udplite
-udp
+-------------------------------
-tcp
-icmp
-</code>
-no geoip, thats not cool.
+Samesame for raspian on raspberry
-Solution:
+Install linux kernel headers
 <code>
-aptitude install module-assistant
+apt-get update && sudo apt-get install git bc libncurses5-dev libtext-csv-xs-perl autoconf automake libtool xutils-dev iptables-dev -y
-*** time to get a cup of coffee ***
-module-assistant --verbose --text-mode auto-install xtables-addons
+wget https://raw.githubusercontent.com/notro/rpi-source/master/rpi-source -O /usr/bin/rpi-source && sudo chmod +x /usr/bin/rpi-source && /usr/bin/rpi-source -q --tag-update
+cd ~
+rpi-source
 </code>
-===failed, damn===
+Install xtables-addons
-well then we take a little barefoot walk
 <code>
-apt-get install git autoconf automake libtool xutils-dev
 git clone git://git.code.sf.net/p/xtables-addons/xtables-addons
 cd xtables-addons
-libtoolize --force
+./autogen.sh
-aclocal
-autoheader
-autoconf
-autoreconf -i
 ./configure
-sudo make install
+make -j5
-sudo depmod
+make install
+depmod
+reboot
+cat /proc/net/ip_tables_matches
+conntrack
+conntrack
+conntrack
+multiport
+geoip
+udplite
+udp
+tcp
+icmp
 </code>