Moblock (peerguardian linux alternative)
Quote:
MoBlock and Peerguardian are both applications that enable you to block internet traffic based on large lists of ip address ranges in order to protect your privacy
http://moblock-deb.sourceforge.net/
This HOWTO is moved to:
Support thread maintained by JRE, the moblock maintainer.
Re: Moblock (peerguardian linux alternative)
very nice guide, this will replace my old peerguardian installation :)
Re: Moblock (peerguardian linux alternative)
i got an issue with moblock, the moblock.log says
---
error during nfq_create_queue()
Ranges loaded: 0
Merged ranges: 0
Skipped useless ranges: 0
NFQUEUE: binding to queue '0'
error during nfq_create_queue()
Ranges loaded: 0
Merged ranges: 0
Skipped useless ranges: 0
NFQUEUE: binding to queue '0'
---
i've highlighted the error
Re: Moblock (peerguardian linux alternative)
can you tell me if this works with firestarter? last time i tried moblock and peerguardian it kept disabling my firewall
Re: Moblock (peerguardian linux alternative)
is this more stable than peerguardian?
Re: Moblock (peerguardian linux alternative)
how do you stop/restart moblock? how do you make exceptions for port 80?
Re: Moblock (peerguardian linux alternative)
pinoyskull: Are you using breezy? If so, you should install moblock-ipq instead...
If you are running a kernel > 2.6.15, could you run 'lsmod | grep NFQUEUE'.
Run 'sudo ls /etc/moblock'. I want to see if all files are there.
jamesford: I really don't know if it works alongside firestarter. It would be really nice if you (or somebody else) would try this as i have no need for a software firewall (i'm behind a hardware firewall ATM). Let me know, and i'll update my howto.
bionnaki: MoBlock is actively developed, PG for linux is not. I would say moblock is very easy to handle, and it has a nice and clean structure. You be the judge. I chose MoBlock because almost nothing is happening to PG linux ATM.
MoBlock has a whitelist at the top of /etc/moblock/MoBlock-nfq.sh. There you can add port 80 (80 which is http is already accepted for outgoing connectiond and their counterpart replys > in.)
About restarting moblock; it's in the howto, but anyway... 'sudo /etc/init.d/moblock-nfq restart'
To all of you:
I've been thinking of writing a GUI for MoBlock using python/ruby, which would handle starting/stopping, updating blocklist, live status and letting people cancel certain ips/ports from the blocklist.
It would be a tray app of course.
Re: Moblock (peerguardian linux alternative)
well it doesent mess with firestarter but maybe thats cos moblock isnt blocking anything :( it doesent work.
there are no error messages in the log, appears to be running. but not blocking :(
Re: Moblock (peerguardian linux alternative)
thanks for the howto m8.
looking forward to the GUI, if you make it.
is there any equivalent to PG's "pgtext" and Monitor PG?
Re: Moblock (peerguardian linux alternative)
jamesford; could you 'tail -f /var/log/moblock.log' and connect to http://relay.slayradio.org:8000/ using beep-media-player or whatever? I get blocked if I do. A couple of times at least, then i get connected from a different ip.
Also, if i'm not mistaken you can do sudo '/etc/init.d/moblock-nfq status'