maybe try redownloading 0.8.0pre1-1 then reinstall it.
cd /tmp
wget https://raw.githubusercontent.com/dibdot/banIP-prereleases/main/banip_0.8.0pre1-1_all.ipk
opkg install banip_0.8.0pre1-1_all.ipk
Also heed this warning -
Since dibdot change the naming on some of the config list options.
Sorry if I overread this in the posts but for the beta version do I need to download the ban lists manually?
I get error message
Mon Dec 5 14:47:05 2022 user.err banIP-[27306]: local opkg package repository is not available, please set the download utility 'ban_fetchcmd' manually
I tried with option ban_fetchcmd 'curl --connect-timeout 20 --silent --show-error --location -o' but no success.
now it working, I removed old banip conf and moved opkg to banip, then restart and banip working fine. Very good work. Its very needed todays 
I got same problem after installing pre1. Found out that you have to modify ban_fetchcmd="$(command -v curl)" in /usr/lib/banip-functions.sh
You've borked/mixed your installation with an old banIP version. Please remove all former banIP installations and start with a fresh one ... including config. Thanks.
Edit: please provide the output of ubus -S call rpc-sys packagelist.
? More context please - thanks.
Edit: please provide the output of ubus -S call rpc-sys packagelist.
That would be strange as it is a fresh image I created with image-builder not adding ban-ip.
ubus -S call rpc-sys packagelist
Is empty reply
Then install the ubus RPC backend server (rpcd-mod-rpcsys) in your private build or set 'ban_fetchcmd' in your banIP config, no need to change anything in the in banip-functions.sh.
Thanks, will try with the rpcd
'ban_fetchcmd' is only your download utility, in your case 'curl' without options.
That did the trick, after install the package also /etc/config/banip had set option ban_fetchcmd 'curl' 
Optimizing that way does not work on "normal" router hardware, e.g. a Turris Omnia with 2GB RAM dies that way (already reduced to the table and not the whole ruleset):
nft list table inet fw4 | nft -c -o -f /dev/stdin
Merging:
/dev/stdin:10:3-37: ct state established,related accept comment "!fw4: Allow inbound established and related flows"
/dev/stdin:11:3-23: ct state invalid drop comment "!fw4: Drop flows with invalid conntrack state"
into:
ct state vmap { established : accept, related : accept, invalid : drop }
Segmentation fault
the same test run with table banIP dies in the middle of nowhere and brings no output ...
... even if the nft optimizer will behave better in the future a merge of banIP sets won't happen.
Managed to get it running on x86/64 virtualized over proxmox, but when I made the initial edits to the conf file I could see and remove commented lines but after first launch all commented lines are gone from the file.
Anyone else have a similar experience?
Thank you,
-Dan
Yep, thats the usual/expected uci behavior during config updates.
After installing banip package, configured lists in /etc/config/banip and starting with /etc/init.d/banip start it showed in syslog this message: local opkg package repository is not available, please set the download utility 'ban_fetchcmd' manually.
Setting option ban_fetchcmd 'curl' in /etc/config/banip wasn't enough it still complained in syslog.
I modified /usr/lib/banip-functions.sh to ban_fetchcmd="$(command -v curl)" and it started working.
ubus -S call rpc-sys packagelist outputs nothing.
I can confirm that after installing package rpcd-mod-rpcsys it now works as expected without modifying anything in /usr/lib/banip-functions.sh. Thanks @dibdot !
Is there an easy way to tell which list is responsible for blocking which sites?
I fixed Facebook and Instagram by commenting out the avn list but now the wife says zoom is blocked. And I had to whitelist forum.openwrt.org.
I know I can whitelist or allowlist but I'd like to dig deeper.
Thank you,
-Dan
I'm not a networking expert and so I've got a few rather basic question about banip.
I run an OpenWrt router at home with only a single VPN port forwarded to my raspberry pi for a roadwarrior setup. Is it worth running banip in this kind of home setup or is it more useful when you have more services exposed to the internet?
Is there a way to see how many login attempts are being tried from the WAN side on an OpenWrt router?
Does banip also block outgoing LAN -> WAN connections?
I hope someone with more knowledge can explain if this is something I should consider in my OpenWrt setup. So far I use adblock and sqm which make a massive difference but any further security / speed improvements are always welcome.
see Konus, that is the catch banIP is designed to block IP address (and ranges) based on how you decide you want it to block. ingress (incoming traffic), forward (outgoing). You can specify to block on either. If you do not specify, then it blocks on both.
When calling /etc/init.d/banip reload I got OOM in syslog. My router has 734.86 MB RAM and used is 40% - 298 MB before calling this command. Is it supposed to be that RAM hungry or I should do restart instead of reload?
My syslog after calling reload:
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.073226] 24865 total pagecache pages
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.075658] 0 pages in swap cache
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.078226] Swap cache stats: add 0, delete 0, find 0/0
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.081454] Free swap = 0kB
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.083728] Total swap = 0kB
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.086020] 196465 pages RAM
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.088203] 0 pages HighMem/MovableOnly
Mon Dec 12 06:02:10 2022 kern.warn kernel: [997824.090520] 8340 pages reserved
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.092616] Tasks state (memory values in pages):
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.094877] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.097652] [ 1731] 81 1731 252 33 40960 0 0 ubusd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.100798] [ 1732] 0 1732 187 9 40960 0 0 askfirst
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.107597] [ 1733] 0 1733 187 8 36864 0 0 askfirst
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.110542] [ 1764] 0 1764 203 15 40960 0 0 urngd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.113323] [ 2115] 514 2115 248 37 36864 0 0 logd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.116090] [ 2169] 0 2169 394 92 45056 0 0 rpcd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.118863] [ 2519] 0 2519 234 15 40960 0 0 dropbear
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.122260] [ 2635] 0 2635 338 45 40960 0 0 netifd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.125141] [ 2747] 0 2747 313 40 45056 0 0 odhcpd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.138727] [ 2839] 0 2839 208 15 40960 0 0 odhcp6c
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.141662] [ 3915] 0 3915 894 85 40960 0 0 uhttpd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.144571] [ 3990] 0 3990 1289 93 49152 0 0 monit
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.148503] [ 4365] 0 4365 540 28 45056 0 0 ntpd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.151788] [ 4374] 123 4374 280 13 40960 0 0 ntpd
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.154689] [ 4441] 0 4441 641 29 45056 0 0 qemu-ga
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.157578] [ 5141] 0 5141 540 27 45056 0 0 dnsmasq
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.160509] [ 5151] 453 5151 294 46 45056 0 0 dnsmasq
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.163335] [ 7512] 0 7512 282 15 45056 0 0 crond
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.166064] [ 12844] 0 12844 380 110 36864 0 0 banip-service.s
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.168963] [ 13697] 0 13697 267 34 36864 0 0 logread
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.172345] [ 13698] 0 13698 380 109 36864 0 0 banip-service.s
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.175208] [ 1603] 0 1603 222275 25431 495616 0 0 AdGuardHome
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.177984] [ 11169] 0 11169 358 84 36864 0 0 banip
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.180795] [ 11171] 0 11171 384 112 36864 0 0 banip-service.s
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.183626] [ 11585] 0 11585 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.186561] [ 11587] 0 11587 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.190052] [ 11599] 0 11599 60712 60311 528384 0 0 nft
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.192781] [ 11600] 0 11600 53241 52848 466944 0 0 nft
Mon Dec 12 06:02:10 2022 kern.info kernel: [997824.195489] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=nft,pid=11599,uid=0
Mon Dec 12 06:02:10 2022 kern.err kernel: [997824.198759] Out of memory: Killed process 11599 (nft) total-vm:242848kB, anon-rss:241240kB, file-rss:4kB, shmem-rss:0kB, UID:0 pgtables:516kB oom_score_adj:0
Mon Dec 12 06:02:16 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: edropv4, backup: /tmp/banIP-backup/banIP.edropv4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.edropv4.load, rc: 0
Mon Dec 12 06:02:16 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: edropv4, rc: 0, count_dl: 71, count_set: 57, time: 10, log: -
Mon Dec 12 06:02:25 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: firehol1v4, backup: /tmp/banIP-backup/banIP.firehol1v4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol1v4.load, rc: 0
Mon Dec 12 06:02:25 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: firehol1v4, rc: 1, count_dl: -, count_set: -, time: 19, log: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol1v4.nft:5:1-3: Error: syntax error, unexpected number 188 ^^^
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.073303] qemu-ga invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.076134] CPU: 0 PID: 4441 Comm: qemu-ga Not tainted 5.10.138 #0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.078430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.081385] Call Trace:
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.083128] 0xffffffff819f44e2
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.084974] 0xffffffff819ed2f6
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.086742] 0xffffffff819ed4ce
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.088455] 0xffffffff811abd7c
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.090100] 0xffffffff811f078f
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.091731] 0xffffffff811f0ab5
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.093347] 0xffffffff811a852e
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.094947] 0xffffffff811a99aa
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.096523] 0xffffffff812bdacd
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.098077] 0xffffffff811d1195
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.099733] 0xffffffff811d5b8b
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.101290] 0xffffffff81a3087b
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.102850] ? 0xffffffff81c00af8
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.104418] 0xffffffff81c00b0e
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.105924] RIP: 0033:0x7f451764436c
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.107476] Code: Unable to access opcode bytes at RIP 0x7f4517644342.
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.109971] RSP: 002b:00007ffd62124858 EFLAGS: 00010246
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.112487] RAX: 0000000000000000 RBX: 00007f4517665b48 RCX: 00007f451764436c
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.115067] RDX: 0000000000000000 RSI: 00007ffd621248c0 RDI: 00007ffd621248c0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.117737] RBP: 00007f45174dd620 R08: 0000000000000000 R09: 0000000000000000
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.120051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000023
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.122134] R13: 00007f45175e24e0 R14: 0000000000000000 R15: 00007f45174dd650
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.124275] Mem-Info:
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] active_anon:22935 inactive_anon:141402 isolated_anon:0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] active_file:11 inactive_file:0 isolated_file:0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] unevictable:0 dirty:0 writeback:0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] slab_reclaimable:653 slab_unreclaimable:12068
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] mapped:308 shmem:24857 pagetables:508 bounce:0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.125742] free:4726 free_pcp:151 free_cma:0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.136954] Node 0 active_anon:91740kB inactive_anon:565608kB active_file:44kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:1232kB dirty:0kB writeback:0kB shmem:99428kB writeback_tmp:0kB kernel_stack:1712kB all_unreclaimable? yes
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.142718] DMA free:3192kB min:344kB low:428kB high:512kB reserved_highatomic:0KB active_anon:0kB inactive_anon:12528kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.149100] lowmem_reserve[]: 0 713 713 713
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.151235] DMA32 free:15980kB min:16036kB low:20044kB high:24052kB reserved_highatomic:0KB active_anon:91740kB inactive_anon:552348kB active_file:124kB inactive_file:280kB unevictable:0kB writepending:0kB present:769868kB managed:736592kB mlocked:0kB pagetables:2032kB bounce:0kB free_pcp:732kB local_pcp:484kB free_cma:0kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.159916] lowmem_reserve[]: 0 0 0 0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.162107] DMA: 0*4kB 1*8kB (M) 1*16kB (M) 1*32kB (M) 1*64kB (M) 0*128kB 0*256kB 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 3192kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.165473] DMA32: 36*4kB (U) 16*8kB (UME) 9*16kB (UE) 7*32kB (UE) 10*64kB (UME) 5*128kB (UE) 5*256kB (UME) 3*512kB (ME) 9*1024kB (ME) 1*2048kB (M) 0*4096kB = 16000kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.171208] 24908 total pagecache pages
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.173589] 0 pages in swap cache
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.175857] Swap cache stats: add 0, delete 0, find 0/0
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.178304] Free swap = 0kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.180408] Total swap = 0kB
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.182446] 196465 pages RAM
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.184448] 0 pages HighMem/MovableOnly
Mon Dec 12 06:02:29 2022 kern.warn kernel: [997843.186531] 8340 pages reserved
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.188482] Tasks state (memory values in pages):
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.190664] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.193472] [ 1731] 81 1731 252 32 40960 0 0 ubusd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.196195] [ 1732] 0 1732 187 9 40960 0 0 askfirst
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.198930] [ 1733] 0 1733 187 8 36864 0 0 askfirst
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.201740] [ 1764] 0 1764 203 15 40960 0 0 urngd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.204473] [ 2115] 514 2115 248 37 36864 0 0 logd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.207200] [ 2169] 0 2169 395 93 45056 0 0 rpcd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.210021] [ 2519] 0 2519 234 15 40960 0 0 dropbear
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.212839] [ 2635] 0 2635 338 45 40960 0 0 netifd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.215639] [ 2747] 0 2747 313 41 45056 0 0 odhcpd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.218436] [ 2839] 0 2839 208 15 40960 0 0 odhcp6c
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.221277] [ 3915] 0 3915 894 85 40960 0 0 uhttpd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.224081] [ 3990] 0 3990 1289 93 49152 0 0 monit
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.226865] [ 4365] 0 4365 540 28 45056 0 0 ntpd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.229657] [ 4374] 123 4374 280 13 40960 0 0 ntpd
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.232463] [ 4441] 0 4441 641 29 45056 0 0 qemu-ga
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.235317] [ 5141] 0 5141 540 27 45056 0 0 dnsmasq
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.238266] [ 5151] 453 5151 294 46 45056 0 0 dnsmasq
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.241088] [ 7512] 0 7512 282 15 45056 0 0 crond
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.243880] [ 12844] 0 12844 380 110 36864 0 0 banip-service.s
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.246818] [ 13697] 0 13697 267 34 36864 0 0 logread
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.249645] [ 13698] 0 13698 380 109 36864 0 0 banip-service.s
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.252549] [ 1603] 0 1603 222275 25431 495616 0 0 AdGuardHome
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.255328] [ 11169] 0 11169 358 84 36864 0 0 banip
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.258126] [ 11171] 0 11171 384 112 36864 0 0 banip-service.s
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.260967] [ 11666] 0 11666 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.263771] [ 11668] 0 11668 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.266562] [ 11680] 0 11680 53577 53176 466944 0 0 nft
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.269675] [ 11681] 0 11681 60377 59984 520192 0 0 nft
Mon Dec 12 06:02:29 2022 kern.info kernel: [997843.272364] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=nft,pid=11681,uid=0
Mon Dec 12 06:02:29 2022 kern.err kernel: [997843.275613] Out of memory: Killed process 11681 (nft) total-vm:241508kB, anon-rss:239932kB, file-rss:4kB, shmem-rss:0kB, UID:0 pgtables:508kB oom_score_adj:0
Mon Dec 12 06:02:59 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: firehol3v4, backup: /tmp/banIP-backup/banIP.firehol3v4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol3v4.load, rc: 0
Mon Dec 12 06:02:59 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: firehol3v4, rc: 1, count_dl: -, count_set: -, time: 34, log: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol3v4.nft:5:1-3: Error: syntax error, unexpected number 190 ^^^
Mon Dec 12 06:03:08 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: firehol2v4, backup: /tmp/banIP-backup/banIP.firehol2v4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol2v4.load, rc: 0
Mon Dec 12 06:03:08 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: firehol2v4, rc: 1, count_dl: -, count_set: -, time: 43, log: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol2v4.nft:5:1-3: Error: syntax error, unexpected number 116 ^^^
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.336032] nft invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.338797] CPU: 1 PID: 11752 Comm: nft Not tainted 5.10.138 #0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.341087] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.344036] Call Trace:
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.345776] 0xffffffff819f44e2
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.347647] 0xffffffff819ed2f6
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.349430] 0xffffffff819ed4ce
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.351178] 0xffffffff811abd7c
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.352904] 0xffffffff811f078f
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.354597] 0xffffffff811f0ab5
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.356218] 0xffffffff811a852e
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.357877] 0xffffffff811a99aa
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.359461] 0xffffffff812bdacd
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.361089] 0xffffffff811d1195
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.362653] 0xffffffff811d5b8b
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.364197] 0xffffffff81a3087b
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.365743] ? 0xffffffff81c00af8
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.367291] 0xffffffff81c00b0e
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.368784] RIP: 0033:0x7f31b7769a3d
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.370345] Code: Unable to access opcode bytes at RIP 0x7f31b7769a13.
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.372330] RSP: 002b:00007ffc35347128 EFLAGS: 00010246
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.374165] RAX: 00007f31aaa36250 RBX: 00007f31aaa36c70 RCX: fffffffffffffeb0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.376269] RDX: 00007f31b77428a3 RSI: 00007f31aaa362a0 RDI: 00007f31aaa36cc0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.378391] RBP: 00007f31aaa362e0 R08: 0000000000000009 R09: 00007ffc35347590
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.380536] R10: 00007f31a8ee4ffc R11: 0000000000000001 R12: 00007f31aaa36d00
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.382654] R13: 00007f31b7811fc6 R14: 00007f31b77428a3 R15: 00007f31a8f87148
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.384806] Mem-Info:
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] active_anon:23337 inactive_anon:141008 isolated_anon:0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] active_file:14 inactive_file:6 isolated_file:0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] unevictable:0 dirty:0 writeback:0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] slab_reclaimable:661 slab_unreclaimable:12071
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] mapped:299 shmem:25260 pagetables:542 bounce:0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.386291] free:4770 free_pcp:0 free_cma:0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.397497] Node 0 active_anon:93348kB inactive_anon:564032kB active_file:56kB inactive_file:24kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:1196kB dirty:0kB writeback:0kB shmem:101040kB writeback_tmp:0kB kernel_stack:1712kB all_unreclaimable? yes
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.403279] DMA free:3180kB min:344kB low:428kB high:512kB reserved_highatomic:0KB active_anon:0kB inactive_anon:12688kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB pagetables:28kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.409716] lowmem_reserve[]: 0 713 713 713
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.411861] DMA32 free:15900kB min:16036kB low:20044kB high:24052kB reserved_highatomic:0KB active_anon:93348kB inactive_anon:551052kB active_file:260kB inactive_file:0kB unevictable:0kB writepending:0kB present:769868kB managed:736592kB mlocked:0kB pagetables:2140kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.420525] lowmem_reserve[]: 0 0 0 0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.422826] DMA: 1*4kB (M) 1*8kB (M) 0*16kB 1*32kB (M) 1*64kB (M) 0*128kB 0*256kB 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 3180kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.426240] DMA32: 130*4kB (UM) 14*8kB (UME) 4*16kB (ME) 11*32kB (UME) 10*64kB (UME) 5*128kB (ME) 4*256kB (ME) 4*512kB (UME) 3*1024kB (UME) 2*2048kB (UM) 1*4096kB (M) = 16664kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.432012] 25280 total pagecache pages
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.434403] 0 pages in swap cache
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.436645] Swap cache stats: add 0, delete 0, find 0/0
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.439122] Free swap = 0kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.441250] Total swap = 0kB
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.443339] 196465 pages RAM
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.445356] 0 pages HighMem/MovableOnly
Mon Dec 12 06:03:12 2022 kern.warn kernel: [997886.447451] 8340 pages reserved
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.449458] Tasks state (memory values in pages):
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.451666] [ pid ] uid tgid total_vm rss pgtables_bytes swapents oom_score_adj name
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.454443] [ 1731] 81 1731 252 31 40960 0 0 ubusd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.457188] [ 1732] 0 1732 187 9 40960 0 0 askfirst
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.459957] [ 1733] 0 1733 187 8 36864 0 0 askfirst
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.462875] [ 1764] 0 1764 203 15 40960 0 0 urngd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.465673] [ 2115] 514 2115 248 37 36864 0 0 logd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.468409] [ 2169] 0 2169 395 93 45056 0 0 rpcd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.471176] [ 2519] 0 2519 234 15 40960 0 0 dropbear
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.474045] [ 2635] 0 2635 338 46 40960 0 0 netifd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.476852] [ 2747] 0 2747 313 40 45056 0 0 odhcpd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.479660] [ 2839] 0 2839 208 15 40960 0 0 odhcp6c
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.482529] [ 3915] 0 3915 894 85 40960 0 0 uhttpd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.485360] [ 3990] 0 3990 1289 93 49152 0 0 monit
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.488163] [ 4365] 0 4365 540 28 45056 0 0 ntpd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.490962] [ 4374] 123 4374 280 13 40960 0 0 ntpd
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.493794] [ 4441] 0 4441 641 29 45056 0 0 qemu-ga
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.496598] [ 5141] 0 5141 540 27 45056 0 0 dnsmasq
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.499384] [ 5151] 453 5151 294 46 45056 0 0 dnsmasq
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.502180] [ 7512] 0 7512 282 15 45056 0 0 crond
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.504906] [ 12844] 0 12844 380 110 36864 0 0 banip-service.s
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.507823] [ 13697] 0 13697 267 34 36864 0 0 logread
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.510605] [ 13698] 0 13698 380 109 36864 0 0 banip-service.s
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.513507] [ 1603] 0 1603 222275 25431 495616 0 0 AdGuardHome
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.516309] [ 11169] 0 11169 358 84 36864 0 0 banip
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.519151] [ 11171] 0 11171 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.522017] [ 11740] 0 11740 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.524830] [ 11742] 0 11742 384 113 36864 0 0 banip-service.s
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.527648] [ 11752] 0 11752 61750 59937 528384 0 0 nft
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.530344] [ 11754] 0 11754 53262 52878 466944 0 0 nft
Mon Dec 12 06:03:12 2022 kern.info kernel: [997886.532963] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/,task=nft,pid=11752,uid=0
Mon Dec 12 06:03:12 2022 kern.err kernel: [997886.536139] Out of memory: Killed process 11752 (nft) total-vm:247000kB, anon-rss:239748kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:516kB oom_score_adj:0
Mon Dec 12 06:03:19 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: threatv4, backup: /tmp/banIP-backup/banIP.threatv4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.threatv4.load, rc: 0
Mon Dec 12 06:03:19 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: threatv4, rc: 0, count_dl: 1661, count_set: 1544, time: 11, log: -
Mon Dec 12 06:05:04 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: firehol4v4, backup: /tmp/banIP-backup/banIP.firehol4v4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.firehol4v4.load, rc: 0
Mon Dec 12 06:05:11 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: firehol4v4, rc: 1, count_dl: -, count_set: -, time: 123, log: netlink: Error: Could not process rule: No buffer space available
Mon Dec 12 06:05:20 2022 user.debug banIP-0.8.0pre1-1[11171]: f_backup ::: name: threatviewv4, backup: /tmp/banIP-backup/banIP.threatviewv4.gz, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.threatviewv4.load, rc: 0
Mon Dec 12 06:05:20 2022 user.debug banIP-0.8.0pre1-1[11171]: f_down ::: name: threatviewv4, rc: 0, count_dl: 538, count_set: 538, time: 9, log: -
Mon Dec 12 06:05:33 2022 user.debug banIP-0.8.0pre1-1[11171]: f_rmset ::: sets: -, tmp: /tmp/tmp.PePHPc/tmp.GIjgFE.final.delete, rc: -, log: -
Mon Dec 12 06:05:33 2022 user.debug banIP-0.8.0pre1-1[11171]: f_system ::: system: QEMU Standard PC (Q35 + ICH9, 2009), OpenWrt 22.03.0 r19685-512e76967f, version: 0.8.0pre1-1, memory: 416, cpu_cores: 2
Mon Dec 12 06:05:43 2022 user.debug banIP-0.8.0pre1-1[11171]: f_rmdir ::: deleted directory: /tmp/tmp.PePHPc
Try a small blocklist.