verita84/firewall
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
303 Commits 1 Branch 0 Tags 11 MiB
Shell 100%
f24cd43de8
Go to file
verita84 f24cd43de8 Update ReadMe.md
2024-09-24 19:44:54 -06:00
bots.txt fix 2024-09-23 22:17:27 -06:00
crawlers.txt fix 2024-09-23 22:17:27 -06:00
firewall.service fix 2024-09-23 22:08:38 -06:00
firewall.sh fix 2024-09-24 19:26:10 -06:00
ipv4-filter.nft fix 2024-09-24 11:50:24 -06:00
ipv6-filter.nft fix 2024-09-24 11:50:24 -06:00
nft.rules fix 2024-09-24 17:44:34 -06:00
ReadMe.md Update ReadMe.md 2024-09-24 19:44:54 -06:00
safe.txt fix 2024-09-23 22:17:27 -06:00

ReadMe.md

Prerequisites

  1. NFT
  2. Redis

How to Run

  • cd /opt
  • git clone https://git.poster.place/verita84/firewall

Configure Redis Schema

bash firewall.sh import-db

Configure firewall.sh

  • Edit the portConfig variables to allow ports
  • Modify NGINX_ACCESS to point to your NGINX config file

Enable SystemD

  • cp firewall.service /etc/systemd/system
  • systemctl enable --now firewall

Add Detection by the Minute via Cron

*/1 * * * * bash /opt/firewall/firewall.sh attacker-protection
*/5 * * * * bash /opt/firewall/firewall.sh forgive