Two Questions:
- What banIP feed lists do you recommend? I am following the README advice and enabled (cinsscore,debl, and turris). I am on 256MB and have some room for more.
- I'd like to block all regions but ARIN, but I dont see how to enable 'Regional Internet Registry' selections in the WAN-Input/WAN-Forward selection. Am I missing something?
config banip 'global'
option ban_enabled '1'
option ban_debug '0'
option ban_autodetect '1'
list ban_logterm 'Exit before auth from'
list ban_logterm 'luci: failed login'
option ban_protov4 '1'
option ban_protov6 '1'
list ban_ifv4 'wwan'
list ban_ifv6 'wan'
list ban_ifv6 'wan6'
list ban_ifv6 'wwan'
option ban_fetchretry '5'
option ban_nicelimit '0'
option ban_filelimit '1024'
option ban_cores '1'
option ban_splitsize '1024'
option ban_deduplicate '1'
option ban_reportelements '0'
option ban_nftpriority '-100'
option ban_icmplimit '10'
option ban_synlimit '10'
option ban_udplimit '100'
option ban_nftpolicy 'memory'
option ban_blocktype 'drop'
option ban_nftloglevel 'warn'
option ban_logprerouting '0'
option ban_loginput '0'
option ban_logforwardwan '0'
option ban_logforwardlan '0'
option ban_loglimit '100'
option ban_autoallowlist '1'
option ban_autoallowuplink 'subnet'
option ban_autoblocklist '1'
option ban_allowlistonly '0'
option ban_fetchcmd 'uclient-fetch'
list ban_trigger 'wan'
list ban_trigger 'wan6'
list ban_trigger 'wwan'
list ban_dev 'phy0-sta0'
list ban_blockinput 'cinsscore'
list ban_blockinput 'debl'
list ban_blockinput 'turris'
list ban_blockforwardwan 'cinsscore'
list ban_blockforwardwan 'debl'
list ban_blockforwardwan 'turris'
list ban_region 'AFRINIC'
list ban_region 'APNIC'
list ban_region 'LACNIC'
list ban_region 'RIPE'