Alkanov/block-tor-exit-nodes-iptables.md

Forked from jkullick/block-tor-exit-nodes-iptables.md

Created April 22, 2020 10:15

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/Alkanov/55ded5b193f23c5832d2b258bcc89b58.js"></script>
Save Alkanov/55ded5b193f23c5832d2b258bcc89b58 to your computer and use it in GitHub Desktop.

Download ZIP

Block Tor Exit Nodes with IPTables

Raw

block-tor-exit-nodes-iptables.md

Install ipset:

apt-get install ipset

Create new ipset:

ipset create tor iphash

Read Tor Exit Node List and add to ipset:

curl -sSL "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=$(curl icanhazip.com)" | sed '/^#/d' | while read IP; do
  ipset -q -A tor $IP
done

Note: This should run as daily cronjob.

Block ipset with iptables:

iptables -A INPUT -m set --match-set tor src -j DROP

Source