Block a range of IP's with Bastille & iptables

Discussion in 'Tips/Tricks/Mods' started by wpwood3, Jan 28, 2008.

  1. wpwood3

    wpwood3 New Member

    I needed an easy way to block a range of IP addresses so I wrote a little bash script.

    You enter IP ranges like into a simple text file. The script produces the iptables code for you and puts it in the correct folder for the Bastille firewall to use. All you have to do is restart Bastille and your rules are working and blocking all of the IP's in the range. Enter each range you want to block on a separate line in the text file. Enter as many lines as you want.

    I use Snort for intrusion detection so this script gives me the ability to quickly and easily manage the IP ranges I want to block. To make a change all you do is edit the text file, run the script and restart Bastille. Rules remain in effect even if you reboot your server.


    PS - I tried about 6 times to upload it here as a zip file and each time it was corrupted. Finally I tried tar.gz and that seems to work fine. :confused:

    Attached Files:

    Last edited: Jan 28, 2008

Share This Page