Config file not being generated and how to test filtering is really working

[aronmgv]

Hey,

I would like to confirm why the config file in /etc/firehol/update-ipsets.conf was not generated. I followed up the installation guide - all went through.

Tried: update-ipsets update-ipsets -r update-ipsets -f /etc/firehol/update-ipsets.conf

Running as root. None of the above generates the config file (checked also /root).

I used before couple IP sets, and when running command update-ipsets it only mentions my previously enabled ipsets, not yours..

root@caradhras:[/tmp/iprange.git]: update-ipsets -r

Wed Jan 16 12:41:57 CET 2019: /usr/sbin/update-ipsets

Getting list of active ipsets...
Found these ipsets active: BANNED FAIL2BAN BLACKLIST WHITELIST

I am running a TeamSpeak server with proxy/vpn detection script. When I try to test it on my server, I go through - then I test the TeamSpeak and there I get banned. So my question is if this is working for me and how to properly test it.

However it says the list was enabled:

root@caradhras:[/tmp/iprange.git]: update-ipsets enable geolite2_country
 WARNING : geolite2_country: is already enabled
root@caradhras:[/tmp/iprange.git]:

Appreciate and thanks, Michal

[btoplak]

The same issue here.

After building on Debian 9 the /etc/firehol/update-ipsets.conf isn't generated.

Additionaly, it seems there is a bug in enabling the lists. Some lists get flagged as enabled when using "update-ipsets enable XYZ", but they really aren't enabled. XYZ.sources file is empty and on the start of update script it doesn't list XYZ as enabled.

[eagle1maledetto]

Same problem on Ubuntu 16.04

I can't find/get a way to have a working update-ipsets.conf

I mean, I didn't even found an example online.