GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    Tosti ? (tost@mk.toast.cafe)'s status on Tuesday, 11-Oct-2022 21:39:30 JST Tosti ? Tosti ?

    first, you wanna make ipsets
    these accelerate the performance a lotfirewall-cmd --permanent --new-ipset=denylist --type=hash:ip --family=inet firewall-cmd --permanent --new-ipset=denylist6 --type=hash:ip --family=inet6Sadly, dual stack isn't a thing so we make both.
    You can add a description/short if you'd like.
    Then you add entries:firewall-cmd --ipset=denylist --add-entry=1.2.3.4 --permanent firewall-cmd --ipset=denylist6 --add-entry=dead:beef::1/48 --permanentNote that CIDR nets are fine too here! Though I'm hazy on the specifics.
    Finally, we need to actually DROP the traffic... so let's just add it to the drop zone:firewall-cmd --permanent --zone=drop --add-source=ipset:denylist firewall-cmd --permanent --zone=drop --add-source=ipset:denylist6And then we reload the config: firewall-cmd --reload.
    And now the traffic from the addresses is dropped.

    In conversation Tuesday, 11-Oct-2022 21:39:30 JST from mk.toast.cafe permalink

    Feeds

    • Activity Streams
    • RSS 2.0
    • Atom
    • Help
    • About
    • FAQ
    • TOS
    • Privacy
    • Source
    • Version
    • Contact

    GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

    Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.