IPSET from external file

K

KatyComputer

Well-Known Member
Sep 26, 2019
194
16
58
62
St Louis
katycomputer.com
I am considering ways of integrating the Spamhaus Drop lists into our environment. Is it possible to define an IPSET using networks defined in an external file, so something like this:
[IPSET shdrop]
include: /etc/pve/firewall/spamhaus/drop.txt
?
 
hi,

i don't think so. but you can loop through the file and add the entries to a specific ipset
 
Hi,

The best way is to block IPs from any list on your border gateway. So you will block offending traffic like this and not on the PMX level because you will waste your cpu/ram and so on.

Good luck / bafta.
 
You must log in or register to reply here.
Top Bottom