返回列表 發帖
Qnewbie

Rank: 1
1# 跳轉到 » 倒序看帖
打印
tT
發表於 2016-11-5 06:13 | 只看該作者

Automatically Updated VoIP Blacklist(volunteer needed!)

本帖最後由 Qnewbie 於 2016-11-5 06:15 編輯

The VoIP Blacklist is maintained by voipbl.org. Voipbl.org provides a configuration to block ip addresses in the blacklist with fai2ban.

For mikrotik user, we might use this blacklist according to
http://joshaven.com/resources/tr ... ated-address-list/.

1. Bash script to create VoipBL.rsc, some volunteers(I mean 電腦超人 ) could run it frequently with cron and provide VoipBL.rsc for download?
  1. #!/bin/sh

  3. ####
  4. # Orig.: http://joshaven.com/resources/tricks/mikrotik-automatically-updated-address-list/
  5. ####

  7. saveTo=/var/www
  8. now=$(date);
  9. echo "# Generated by Qnewbie on $now" > $saveTo/VoipBL.rsc
  10. echo "/ip firewall address-list" >> $saveTo/VoipBL.rsc
  11. wget -q -O - http://www.voipbl.org/update |  awk ' $1 != "#" { print "add list=blacklist address=" $1 " comment=VoipBL";}'  >> $saveTo/VoipBL.rsc
複製代碼
2. It is not applicable as VoipBL.rsc is not available in telecom-cafe.
Mikrotik daily update script:
  1. # Script which will download the VoIPBL list as a text file
  2. /system script add name="DownloadVoIPBL" source={
  3. /tool fetch url="http://www.telecom-cafe.com/VoipBL.rsc" mode=http;
  4. :log info "Downloaded VoipBL.rsc from telecom-cafe.com";
  5. }

  7. # Script which will Remove old VoIPBL records and add new one
  8. /system script add name="ReplaceVoIPBL" source={
  9. /ip firewall address-list remove [find where comment="VoIPBL"]
  10. /import file-name=VoipBL.rsc;
  11. :log info "Removed old VoIPBL records and imported new list";
  12. }

  14. # Schedule the download and application of the VoIPBL list
  15. /system scheduler add comment="Download VoIPBL list" \
  16.   interval=1d name="DownloadVoIPBL_List" on-event=DownloadVoIPBL \
  17.   start-date=jan/01/1970 start-time=16:38:48
  18. /system scheduler add comment="Apply VoIPBL List" \
  19.   interval=1d name="InstallVoIPBL_List" on-event=ReplaceVoIPBL \
  20.   start-date=jan/01/1970 start-time=16:43:48
複製代碼
Possible problem:
The address list might be too looooooong... Hopefully someone might merge addresses with larger subnet.
收藏 分享
RB750G, RB2011UAS-2HnD
IP01, A580IP, AT-610

返回列表