bundles/nftables: add "globally blocked ips"

This commit is contained in:
Franzi 2024-01-23 09:30:41 +01:00
parent 5ffbe50b1e
commit 980f4cb41a
Signed by: kunsi
GPG key ID: 12E3D2136B818350
2 changed files with 9 additions and 0 deletions

View file

@ -6,6 +6,10 @@ defaults = {
'nftables': {}, 'nftables': {},
}, },
}, },
'nftables': {
'blocked_v4': repo.libs.firewall.global_ip4_blocklist,
'blocked_v6': repo.libs.firewall.global_ip6_blocklist,
},
'pacman': { 'pacman': {
'packages': { 'packages': {
'nftables': {}, 'nftables': {},

View file

@ -44,3 +44,8 @@ named_networks = {
}, },
}, },
} }
global_ip4_blocklist = {
"141.98.11.0/24", # 2024-01-21, smtp login bruteforce
}
global_ip6_blocklist = set()