Python script that generates nft maps of ip address blocks and corresponding geolocation. This data is taken from db-ip.com, so yo don't have to worry about accepting any EULA.
Any way to make this more efficient? I've set up a set of allowed countries (because there are less allowed than disallowed) and then I use meta mark != @allowed_countries .... I am wondering if the ideas brought up in #9 are still relevant.
Once the includes are loaded, nft add ruleset takes a very long time to add a single rule. This is an issue when combining this with fail2ban.
Any way to make this more efficient? I've set up a set of allowed countries (because there are less allowed than disallowed) and then I use
meta mark != @allowed_countries .... I am wondering if the ideas brought up in #9 are still relevant.Once the includes are loaded,
nft add rulesettakes a very long time to add a single rule. This is an issue when combining this with fail2ban.