-
Notifications
You must be signed in to change notification settings - Fork 389
Installing update ipsets
update-ipsets is part of FireHOL.
You can use update-ipsets without FireHOL. update-ipsets will does not depend on it. You have to install it to your computer though.
update-ipsets is a new member of the FireHOL suite. It has not been released yet. So, even if you already use FireHOL, you have to download the latest development version of it to have update-ipsets.
The following procedure installs FireHOL to your computer.
The FireHOL repo includes update-ipsets.
This is a quick guide to install it:
# cd somewhere
cd /tmp
# download iprange and firehol from github
git clone https://github.com/firehol/iprange.git iprange.git
git clone https://github.com/firehol/firehol.git firehol.git
# install iprange
cd iprange.git
./autogen.sh
# make sure it completed successfully
./configure --prefix=/usr CFLAGS="-march=native -O3"
# make sure it completed successfully
make
# make sure it completed successfully
sudo make install
# make sure it completed successfully
# install firehol
cd ../firehol.git
./autogen.sh
# make sure it completed successfully
./configure --prefix=/usr --sysconfdir=/etc --disable-man --disable-doc
# make sure it completed successfully
make
# make sure it completed successfully
sudo make install
# make sure it completed successfullyThe above installs the development version of FireHOL on your computer, which includes the latest update-ipsets.
To run it, use something like this:
# enable an ip list
update-ipsets enable dshield
# update all enabled lists
update-ipsetsKeep in mind update-ipsets supports running as both root and any normal user.
Check Downloading IP Lists to learn how to use it.