#!/bin/sh # 2024-03-26 02:36:47 NF IPTABLES=/usr/sbin/iptables IPSET=/usr/sbin/ipset $IPSET create BLOCKLIST hash:net $IPSET add BLOCKLIST 103.43.204.0/23 $IPSET add BLOCKLIST 203.12.249.0/24 $IPSET add BLOCKLIST 203.17.240.0/22 $IPSET add BLOCKLIST 203.142.221.0/24 $IPTABLES -A INPUT -m set --match-set BLOCKLIST src -j DROP $IPTABLES -A OUTPUT -m set --match-set BLOCKLIST dst -j DROP