Mercurial > repos > other > Puppet
comparison manifests/templates.pp @ 186:5e274dfc4b39 puppet-3.6
Update firewall blacklisting
* Remove old IPs that probably aren't bothering us any more
* Add a new IP that's abusing the bdstrike contact form (but
no others)
| author | IBBoard <dev@ibboard.co.uk> |
|---|---|
| date | Tue, 08 Jan 2019 20:13:18 +0000 |
| parents | 78dc899775b7 |
| children | 91d4b88b7568 |
comparison
equal
deleted
inserted
replaced
| 185:78dc899775b7 | 186:5e274dfc4b39 |
|---|---|
| 91 source => '66.249.64.0/19', | 91 source => '66.249.64.0/19', |
| 92 dport => [80,443], | 92 dport => [80,443], |
| 93 proto => tcp, | 93 proto => tcp, |
| 94 action => accept, | 94 action => accept, |
| 95 } | 95 } |
| 96 # Block a spammer hitting our contact forms (also on StopForumSpam list A LOT) | |
| 96 firewall { '099 Blacklist spammers 1': | 97 firewall { '099 Blacklist spammers 1': |
| 97 source => '146.0.229.80/28', | 98 source => '107.181.78.172', |
| 98 dport => [465, 25], | 99 dport => [80, 443], |
| 99 proto => tcp, | |
| 100 action => 'reject', | |
| 101 } | |
| 102 firewall { '099 Blacklist spammers 2': | |
| 103 source => '89.43.62.0/24', | |
| 104 dport => [465, 25], | |
| 105 proto => tcp, | |
| 106 action => 'reject', | |
| 107 } | |
| 108 # German server that did 5000+ HEAD requests in <10 days to "/" on one site | |
| 109 firewall { '099 Blacklist spammers 3': | |
| 110 source => '78.47.182.152', | |
| 111 dport => [465, 25], | |
| 112 proto => tcp, | 100 proto => tcp, |
| 113 action => 'reject', | 101 action => 'reject', |
| 114 } | 102 } |
| 115 firewall { '099 Blacklist IODC bot': | 103 firewall { '099 Blacklist IODC bot': |
| 116 # IODC bot makes too many bad requests, and contact form is broken | 104 # IODC bot makes too many bad requests, and contact form is broken |