Last active
January 4, 2021 11:46
-
-
Save coolaj86/6d7b9c65410ab8dfb722640895c39c58 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Block all of APNIC | |
| ufw deny from 43.224.0.0/13 | |
| ufw deny from 43.236.0.0/14 | |
| ufw deny from 43.240.0.0/14 | |
| ufw deny from 43.245.0.0/16 | |
| ufw deny from 43.246.0.0/15 | |
| ufw deny from 43.248.0.0/14 | |
| ufw deny from 43.252.0.0/16 | |
| ufw deny from 43.254.0.0/15 | |
| ufw deny from 45.64.0.0/16 | |
| ufw deny from 45.65.0.0/20 | |
| ufw deny from 45.65.16.0/20 | |
| ufw deny from 45.65.32.0/19 | |
| ufw deny from 45.112.0.0/12 | |
| ufw deny from 45.248.0.0/13 | |
| ufw deny from 137.59.0.0/16 | |
| ufw deny from 139.5.0.0/16 | |
| ufw deny from 144.48.0.0/16 | |
| ufw deny from 146.196.32.0/19 | |
| ufw deny from 146.196.64.0/18 | |
| ufw deny from 150.107.0.0/16 | |
| ufw deny from 150.129.0.0/16 | |
| ufw deny from 150.242.0.0/16 | |
| ufw deny from 157.119.0.0/16 | |
| ufw deny from 160.19.20.0/22 | |
| ufw deny from 160.19.48.0/21 | |
| ufw deny from 160.19.64.0/22 | |
| ufw deny from 160.19.208.0/20 | |
| ufw deny from 160.19.224.0/22 | |
| ufw deny from 160.20.0.0/20 | |
| ufw deny from 160.20.40.0/21 | |
| ufw deny from 160.20.48.0/20 | |
| ufw deny from 160.20.72.0/22 | |
| ufw deny from 160.20.222.0/23 | |
| ufw deny from 160.202.8.0/21 | |
| ufw deny from 160.202.32.0/19 | |
| ufw deny from 160.202.128.0/17 | |
| ufw deny from 160.238.0.0/24 | |
| ufw deny from 160.238.12.0/22 | |
| ufw deny from 160.238.16.0/22 | |
| ufw deny from 160.238.33.0/24 | |
| ufw deny from 160.238.34.0/23 | |
| ufw deny from 160.238.58.0/23 | |
| ufw deny from 160.238.64.0/19 | |
| ufw deny from 162.12.208.0/21 | |
| ufw deny from 162.12.240.0/21 | |
| ufw deny from 163.47.4.0/22 | |
| ufw deny from 163.47.8.0/21 | |
| ufw deny from 163.47.16.0/23 | |
| ufw deny from 163.47.18.0/24 | |
| ufw deny from 163.47.20.0/23 | |
| ufw deny from 163.47.32.0/21 | |
| # Block all of APNIC IANA | |
| ufw deny from 1.0.0.0/8 | |
| ufw deny from 14.0.0.0/8 | |
| ufw deny from 27.0.0.0/8 | |
| ufw deny from 36.0.0.0/8 | |
| ufw deny from 39.0.0.0/8 | |
| ufw deny from 42.0.0.0/8 | |
| ufw deny from 49.0.0.0/8 | |
| ufw deny from 58.0.0.0/8 | |
| ufw deny from 59.0.0.0/8 | |
| ufw deny from 60.0.0.0/8 | |
| ufw deny from 61.0.0.0/8 | |
| ufw deny from 101.0.0.0/8 | |
| ufw deny from 103.0.0.0/8 | |
| ufw deny from 106.0.0.0/8 | |
| ufw deny from 110.0.0.0/8 | |
| ufw deny from 111.0.0.0/8 | |
| ufw deny from 112.0.0.0/8 | |
| ufw deny from 113.0.0.0/8 | |
| ufw deny from 114.0.0.0/8 | |
| ufw deny from 115.0.0.0/8 | |
| ufw deny from 116.0.0.0/8 | |
| ufw deny from 117.0.0.0/8 | |
| ufw deny from 118.0.0.0/8 | |
| ufw deny from 119.0.0.0/8 | |
| ufw deny from 120.0.0.0/8 | |
| ufw deny from 121.0.0.0/8 | |
| ufw deny from 122.0.0.0/8 | |
| ufw deny from 123.0.0.0/8 | |
| ufw deny from 124.0.0.0/8 | |
| ufw deny from 125.0.0.0/8 | |
| ufw deny from 126.0.0.0/8 | |
| ufw deny from 169.208.0.0/12 | |
| ufw deny from 175.0.0.0/8 | |
| ufw deny from 180.0.0.0/8 | |
| ufw deny from 182.0.0.0/8 | |
| ufw deny from 183.0.0.0/8 | |
| ufw deny from 202.0.0.0/8 | |
| ufw deny from 203.0.0.0/8 | |
| ufw deny from 210.0.0.0/8 | |
| ufw deny from 211.0.0.0/8 | |
| ufw deny from 218.0.0.0/8 | |
| ufw deny from 219.0.0.0/8 | |
| ufw deny from 220.0.0.0/8 | |
| ufw deny from 221.0.0.0/8 | |
| ufw deny from 222.0.0.0/8 | |
| ufw deny from 223.0.0.0/8 | |
| # Allow normal things on normal ports | |
| ufw allow ssh | |
| ufw allow https | |
| ufw allow http | |
| ufw allow 53/tcp | |
| ufw allow 53/udp | |
| # Allow custom ports | |
| ufw allow 22042/tcp | |
| ufw allow 42022/tcp | |
| ufw reload | |
| ufw enable |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment