Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
Next revisionBoth sides next revision
docs:guide-user:firewall:fw3_configurations:fw3_parent_controls [2023/08/29 14:23] – [Blocking services with banIP] add vgaeteradocs:guide-user:firewall:fw3_configurations:fw3_parent_controls [2023/08/30 08:26] – [Blocking services with banIP] vgaetera
Line 21: Line 21:
   * Dynamic hosts change their IP on a regular basis, invalidating the blacklist   * Dynamic hosts change their IP on a regular basis, invalidating the blacklist
  
-==== Blocking Name resolution (DNS) by Adblockers ====+==== Blocking name resolution (DNS) by Adblockers ====
 Follow: Follow:
 [[docs:guide-user:services:ad-blocking|Ad blocking]], [[docs:guide-user:services:ad-blocking|Ad blocking]],
Line 47: Line 47:
   * This will block all sites sharing the same IP with the targeted, so use carefully for domains which rely on [[wp>Content_delivery_network|CDNs]].   * This will block all sites sharing the same IP with the targeted, so use carefully for domains which rely on [[wp>Content_delivery_network|CDNs]].
   * Completely blocking sites that use localized domains is problematic.   * Completely blocking sites that use localized domains is problematic.
 +
 +==== Blocking services with banIP ====
 +See also:
 +[[packages:pkgdata:banip]],
 +[[packages:pkgdata:luci-app-banip]]
 +
 +banIP can block services using IP/CIDR lists, e.g. you can block WhatsApp with [[https://github.com/HybridNetworks/whatsapp-cidr|HybridNetworks/whatsapp-cidr]].
 +
 +<code bash>
 +opkg update
 +opkg install banip luci-app-banip
 +uci set banip.global.ban_enabled="1"
 +uci del_list banip.global.ban_feed="whatsapp"
 +uci add_list banip.global.ban_feed="whatsapp"
 +uci commit banip
 +. /usr/share/libubox/jshn.sh
 +json_init
 +json_load_file /etc/banip/banip.custom.feeds 2> /dev/null
 +json_add_object "whatsapp"
 +json_add_string "descr" "WhatsApp CIDR"
 +json_add_string "url_4" "https://raw.githubusercontent.com/\
 +HybridNetworks/whatsapp-cidr/main/WhatsApp/whatsapp_cidr_ipv4.txt"
 +json_add_string "rule_4" "/^[^#]/{print \$1\",\"}"
 +json_close_object
 +json_dump > /etc/banip/banip.custom.feeds
 +/etc/init.d/banip restart
 +</code>
  
 ==== Blocking sites by using proxy servers ===== ==== Blocking sites by using proxy servers =====
Line 159: Line 186:
 You need to apply this for all wireless interfaces accessible by the user. You need to apply this for all wireless interfaces accessible by the user.
 Typically the 5 Ghz band is ''@wifi-iface[0]'' and the 2.4 Ghz band is ''@wifi-iface[1]''. Typically the 5 Ghz band is ''@wifi-iface[0]'' and the 2.4 Ghz band is ''@wifi-iface[1]''.
- 
-==== Blocking services with banIP ==== 
-See also: 
-[[packages:pkgdata:banip]], 
-[[packages:pkgdata:luci-app-banip]] 
- 
-banIP can block services using IP/CIDR lists, e.g. you can block WhatsApp like this. 
- 
-<code bash> 
-opkg update 
-opkg install banip luci-app-banip 
-uci set banip.global.ban_enabled="1" 
-uci -q delete banip.global.ban_feed 
-uci add_list banip.global.ban_feed="whatsapp" 
-uci commit banip 
-. /usr/share/libubox/jshn.sh 
-json_init 
-json_load_file /etc/banip/banip.custom.feeds 2> /dev/null 
-json_add_object "whatsapp" 
-json_add_string "descr" "WhatsApp CIDR" 
-json_add_string "url_4" "https://raw.githubusercontent.com/\ 
-HybridNetworks/whatsapp-cidr/main/WhatsApp/whatsapp_cidr_ipv4.txt" 
-json_add_string "rule_4" "/^[^#]/{print \$1\",\"}" 
-json_close_object 
-json_dump > /etc/banip/banip.custom.feeds 
-/etc/init.d/banip restart 
-</code> 
  
  • Last modified: 2023/10/14 05:53
  • by vgaetera