Skip to content

beinoriusju/hund-ips

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
init_d_script
init_d_script
 
 
ips.py
ips.py
 
 
protect.sh
protect.sh
 
 
util.py
util.py
 
 

Repository files navigation

HUND IPS

This is a custom IPS solution for OpenWRT router to block malicious IP adresses as reported by Redis server (running outside Router).

How this works?

OpenWRT router listens for Redis que using Python and marks coming IP address banned by appending banip blocklist file /etc/banip/banip.blocklist

Requires OpenWRT packages:

  • python3
  • python3-pip
  • bash
  • banip

Instruction:

  1. Install all OpenWRT dependencies
  2. Copy contents of this Git repository to router /root/ips
  3. Copy /root/ips/init_d_script to /root/init.d/protect
  4. service protect start and service protect enable
  5. reboot

How can this be tested/debugged?

  1. Observe OpenWRT logread -f for changes.
  2. Add IP to Redis list router-block
  3. cat /etc/banip/banip.blocklist should have that IP after a few seconds

About

HUND IPS for OpenWRT and Suricata IDS

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages