chris
9798ca9cd6
- Created handlers for reloading systemd and restarting firewall services. - Implemented tasks to ensure the existence of configuration directories and files. - Deployed host-specific and shared configuration files using templates. - Added scripts for managing IPv4 and IPv6 firewalls. - Configured systemd service units for ipt-firewall and ip6t-firewall. - Enabled and started firewall services on system boot.
37 lines
1.0 KiB
Plaintext
37 lines
1.0 KiB
Plaintext
# - IPv4 addresses listet here will be completly banned by the firewall
|
|
# -
|
|
# - - Line beginning with '#' will be ignored.
|
|
# - - Blank lines will be ignored
|
|
# - - Only the first entry (until space sign or end of line) of each line will be considered.
|
|
# -
|
|
# - Valid values are:
|
|
# - complete IPv4 adresses like 1.2.3.4 (will be converted to 1.2.3.0/32)
|
|
# - partial IPv4 addresses like 1.2.3 (will be converted to 1.2.3.0/24)
|
|
# - network/nn CIDR notation like 1.2.3.0/27
|
|
# - network/netmask notaions like 1.2.3.0/255.255.255.0
|
|
# - network/partial_netmask like 1.2.3.4/255
|
|
# -
|
|
# - Note:
|
|
# - - wrong addresses like 1.2.3.256 or 1.2.3.4/33 will be ignored
|
|
# -
|
|
# - Example:
|
|
# - 79.171.81.0/24
|
|
# - 79.171.81.0/255.255.255.0
|
|
# - 79.171.81.0/255.255.255
|
|
# - 79.171.81
|
|
|
|
# CHINANET-JS
|
|
222.184.0.0/13
|
|
61.160.0.0/16
|
|
|
|
# CHINANET-GX
|
|
116.8.0.0/14
|
|
|
|
# BAIDU-HK - Hong Kong
|
|
103.235.44.0/22
|
|
# UNICOM-HE - China Unicom Hebei province network
|
|
110.240.0.0/12
|
|
# CMNET - China Mobile Communications Corporation
|
|
39.128.0.0/10
|
|
|