blocklist-ipsets icon indicating copy to clipboard operation
blocklist-ipsets copied to clipboard

Published 20 hours ago verified publisher icon firehol

Private IP's in the list

Open hendrikvanniekerk79 opened this issue 6 years ago • 4 comments

List have the following addresses that need to be removed.

0.0.0.0/8 @ line 35 10.0.0.0/8 @ line 111 127.0.0.0/8 @ line 2083 172.16.0.0/12 @ line 2535 192.168.0.0/16 @ line 3251

why such a large subnet in the list?

224.0.0.0/3

hendrikvanniekerk79 avatar Jul 04 '18 05:07 hendrikvanniekerk79

Which list? firehol_level1 includes all internet unroutable IPs by definition (includes fullbogons). Check it at https://iplists.firehol.org

The idea is that you apply such blocklists on the internet facing interface, not globally. You should want to block all these IPs on the internet interface.

ktsaou avatar Jul 04 '18 10:07 ktsaou

Is there similar version of this list that omits the private IPs? I like to block known malicious IPs bidirectionally but having the private IPs means I can't consume this list.

tylerszabo avatar Mar 18 '19 00:03 tylerszabo

There are a number of private IPs in the Level 4 list as well... 192.168.0.1 192.168.1.1 192.168.14.1 192.168.178.151 192.168.201.3

Kolano avatar Jun 28 '19 17:06 Kolano

Shouldn't 224.0.0.0/3 be 224.0.0.0/4? Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1420032 and IANA Guidelines for IPv4 Multicast Address Assignments (Range from from 224.0.0.0 - 239.255.255.255)

eborisch avatar Dec 08 '19 16:12 eborisch