View Single Post
  #4  
Old 29th May 2013, 02:03
monkfish monkfish is offline
HowtoForge Supporter
 
Join Date: Mar 2013
Posts: 106
Thanks: 9
Thanked 15 Times in 14 Posts
Default

Same, same - cn, kr, pk, af and others blocked on some of mine.

Have a read of this - I think i adapted scripts from there. You may not need to install ipset using the commands there - its in the base repository for centos so a simple "yum install ipset" will do, and get dependency as well.

You can consolidate those huge country lists you have right the way down!!

http://www.ipdeny.com/blog/blocking-...ipset-utility/

Also for modelling your firewall look at firewall builder www.fwbuilder.org - its excellent.

sorry cannot immediately help you on vmalloc - somebody else will, no doubt

happy blocking !
Reply With Quote