Notices by Tosti ? (tost@mk.toast.cafe), page 14

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

@puniko@mk.absturztau.be hi puni

me: tosti
you: not tosti
we are not the same
except one of you
you know who you are

please ? if the previous post "test post" is gone on your instance
else ?
I also need to make sure we still federate (like at all)

Please remind me to pgrepack the db when I get home

@puniko@mk.absturztau.be https://mk.toast.cafe/notes/967rha407d

at+at@at.at.at

first, you wanna make ipsets
these accelerate the performance a lotfirewall-cmd --permanent --new-ipset=denylist --type=hash:ip --family=inet firewall-cmd --permanent --new-ipset=denylist6 --type=hash:ip --family=inet6Sadly, dual stack isn't a thing so we make both.
You can add a description/short if you'd like.
Then you add entries:firewall-cmd --ipset=denylist --add-entry=1.2.3.4 --permanent firewall-cmd --ipset=denylist6 --add-entry=dead:beef::1/48 --permanentNote that CIDR nets are fine too here! Though I'm hazy on the specifics.
Finally, we need to actually DROP the traffic... so let's just add it to the drop zone:firewall-cmd --permanent --zone=drop --add-source=ipset:denylist firewall-cmd --permanent --zone=drop --add-source=ipset:denylist6And then we reload the config: firewall-cmd --reload.
And now the traffic from the addresses is dropped.

registration reason: im tosti

@puniko@mk.absturztau.be im tosti

im tosti

@puniko@mk.absturztau.be as of yesterday night :nko_3c:

@puniko@mk.absturztau.be new bio new bio

@puniko@mk.absturztau.be hi puni