blocklist-ipsets icon indicating copy to clipboard operation
blocklist-ipsets copied to clipboard
verified publisher icon firehol

[firehol_level3]: Quad9 DNS 9.9.9.9

Open glshnu opened this issue 6 years ago • 3 comments

the list contains the Quad9 DNS Server (IP: 9.9.9.9)

glshnu avatar Jan 20 '20 08:01 glshnu

I would expect that there would be some filters to prevent that sort of thing from happening! ie: 1.1.1.1, 8.8.8.8, 9.9.9.9

aaww01 avatar Jan 20 '20 16:01 aaww01

BUMP. It seems like 8.8.8.8 is on this list. Shouldn't that be filtered out?

dovi5988 avatar Jun 02 '20 15:06 dovi5988

Try setting a whitelist of IPs that you "trust" such as;

192.168.0.0/16 # Your home network subnet 1.0.0.1 # Cloudflare DNS Resolver 1.1.1.1 # Cloudflare DNS Resolver

Something like this;

iptables -I INPUT -m set --match-set whitelist src -j ACCEPT iptables -I INPUT -m set --match-set blocklist src -j DROP

francisuk1989 avatar Jun 21 '20 22:06 francisuk1989