mirror.MikroTik/pwlgrzs.Mikrotik-Blacklist
1
0
Fork 0
mirror of https://github.com/pwlgrzs/Mikrotik-Blacklist.git synced 2025-08-05 02:35:07 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
pwlgrzs.Mikrotik-Blacklist/README.md
pwlgrzs b71a199329 Update README.md
2018-10-06 11:43:04 +02:00

1.1 KiB
Raw Blame History

Mikrotik-Blacklist

This is a blocklist I use with on my Mikrotik router to block all connections from known spam/criminal/etc. networks.

Every 7 days I pull lists from:

  • Spamhaus (DROP & EDROP)
  • dShield

and reformat it to allow automatic import to MT routers.

How to run this on MT

Run following to your MT device with not less that 7d schedule:

Download script:
/tool fetch url="https://raw.githubusercontent.com/pwlgrzs/Mikrotik-Blacklist/master/blacklist.rsc" mode=https
Install script:
/ip firewall address-list remove [find where comment="blacklist"]; /import file-name=blacklist.rsc

You'll also need firewall rule:
/ip firewall filter add chain=input action=drop connection-state=new src-address-list=blacklist in-interface=IFNAME
Note: Replace IFNAME in-interface name with one you have configured

Check out more detailed instructions here.

You can also import install.rsc file, it will do all of above for you.
Upload to MT and run /import file-name=install.rsc in terminal.

TODO

  • Add more sources.