netrunn3r/iptables_geoip_debian.md

Last active November 5, 2024 22:58

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/netrunn3r/d5d9eddde86a7ad7cd31a7d8e5d747c4.js"></script>
Save netrunn3r/d5d9eddde86a7ad7cd31a7d8e5d747c4 to your computer and use it in GitHub Desktop.

Download ZIP

Install geoip for iptables in Debian 10

Raw

iptables_geoip_debian.md

change from buster to bullseye
sudo apt install libnet-cidr-lite-perl libtext-csv-xs-perl libgeoip2-perl

for day of writing, there is a problem with building by dkms this package xtables-addons-common so wehave to install this from source

sudo apt install pkg-config libxtables-dev
wget http://inai.de/files/xtables-addons/xtables-addons-3.13.tar.xz
tar xf xtables-addons-3.13.tar.xz
cd xtables-addons-3.13/
./configure
make
sudo make install
sudo depmod -a
sudo modprobe x_tables
sudo modprobe xt_geoip
cd geoip
manual download GeoLite2-Country-CSV.zip from maxmind.com
./xt_geoip_dl_maxmind
cd GeoLite2-Country-CSV_20201124/
sudo mkdir -p /usr/share/xt_geoip
sudo ../xt_geoip_build_maxmind -D /usr/share/xt_geoip/
sudo iptables -I INPUT -m geoip ! --src-cc XX -j DROP

Refenreces:

braillesiq commented Nov 5, 2024

You have to install the linux-headers-4.9.0-19, but the latest version is linux-headers-4.19.0-27 in Debian 10

braillesiq commented Nov 5, 2024

Do you think it is possible to install on my PROXMOX Linux pve 6.8.12-3-pve?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment