Next revision
|
Previous revision
|
howtos:geoip_on_ubuntu [2012/10/27 17:18] zimbernimbra created |
howtos:geoip_on_ubuntu [2020/09/16 20:57] (current) |
GeoIP Filtering on Ubuntu 12.04 LTS | ===== GeoIP filtering on Ubuntu 12.04 LTS ===== |
| |
Though Ubuntu Linux offers packages for GeoIP filtering, some manual steps are still required for realization. | Though Ubuntu Linux offers packages for GeoIP filtering, some manual steps are still required for realization. |
| |
| - Install the Kernel module + userspace programs <html><p><pre>sudo aptitude install xtables-addons-common</pre></p></html> |
| - Create the directory for the GeoIP list <html><p><pre>sudo mkdir /usr/share/xt_geoip</pre></p></html> |
| - Install the Perl module (optional)<html><p><pre>sudo aptitude install libtext-csv-xs-perl</pre></p></html> |
| - Download GeoIP list<html><p><pre>sudo /usr/lib/xtables-addons/xt_geoip_dl</pre>This will download the list to the current directory, if you want to change this, do that before execution of this command!</p></html> |
| - Convert the GeoIP list<html><p><pre>sudo /usr/lib/xtables-addons/xt_geoip_build -D /usr/share/xt_geoip *.csv</pre>This will build the output files in /usr/share/xt_geoip and assumes the GeoIP list is located in the current directory. Please also note, that you have to specify "*.csv", otherwise nothing will happen.</p></html> |
| - Test everything<html><p><pre>sudo iptables -F && iptables -A OUTPUT -m geoip --dst-cc US -j DROP</pre> This will block all outgoing traffic to IP addresses located in the USA, next you can try to visit <a href="http://www.google.com" class="urlextern" title="http://www.google.com" rel="nofollow" target="_blank">Google</a>, this should not work anymore.</p></html> If you want your firewall changes to be undone, just enter ''sudo iptables -F''. |
| |
__References:__ | __References:__ |
| |
- Robert Haddon's Blog, <html><a href="http://roberthaddon.blogspot.com/2011/09/geoip-filtering-on-ubuntu-1104-natty.html" class="urlextern" title="http://roberthaddon.blogspot.com" rel="nofollow" target="_blank">Words from High</a>, (last visited on 2012-10-27)</html> | - Robert Haddon's Blog, <html><a href="http://roberthaddon.blogspot.com/2011/09/geoip-filtering-on-ubuntu-1104-natty.html" class="urlextern" title="http://roberthaddon.blogspot.com" rel="nofollow" target="_blank">Words from High</a></html>, (last visited on 2012-10-27) |
- <html><a href="http://xtables-addons.sourceforge.net" class="urlextern" title="http://xtables-addons.sourceforge.net" rel="nofollow" target="_blank">xtables on sourceforge.net</a>, (last visited on 2012-10-27)</html> | - <html><a href="http://xtables-addons.sourceforge.net" class="urlextern" title="http://xtables-addons.sourceforge.net" rel="nofollow" target="_blank">xtables on sourceforge.net</a></html>, (last visited on 2012-10-27) |