Results 1 to 10 of 518

Thread: HOWTO: Graphical IP Blocker

Threaded View

  1. #1
    Join Date
    Jul 2007
    Ubuntu 9.04 Jaunty Jackalope

    HOWTO: Graphical IP Blocker

    This article describes how to block lists with a graphical front-end called IPblock. No knowledge of networking, firewalls or command-line configuration are needed. Due to the way IPblock works it doesn't change the behavior of existing firewalls which makes it compatible [1] with other firewall applications like ufw, shorewall or fireHOL. This howto is intended for Beginners and was tested on Ubuntu Feisty, Gutsy, Hardy, Intrepid, Jaunty and Karmic (32-bit and 64-bit).

    Add the iplist repository to your sources.list. Make sure to use the correct sources.list that corresponds to your current distribution:
    • Ubuntu 10.10 "Maverick Meerkat":
      sudo wget -O /etc/apt/sources.list.d/iplist.list
    • Ubuntu 10.04 LTS "Lucid Lynx":
      sudo wget -O /etc/apt/sources.list.d/iplist.list
    • Ubuntu 9.10 "Karmic Koala":
      sudo wget -O /etc/apt/sources.list.d/iplist.list
    • Ubuntu 9.04 "Jaunty Jackalope":
      sudo wget -O /etc/apt/sources.list.d/iplist.list
    • Ubuntu 8.10 "Intrepid Ibex":
      sudo wget -O /etc/apt/sources.list.d/iplist.list
    • Ubuntu 8.04 "Hardy Heron":
      sudo wget -O /etc/apt/sources.list.d/iplist.list

    The key of the signed packages can be imported like this:
    sudo apt-key adv --recv-keys --keyserver C6E3D905C8BCD56BB02E6E0B39456311108B243F
    There is also another way to import the key. You could save the pub key to a file and import it through System->Administration->Software Sources->Authentication->Import Key-file.

    After an update of the Software sources iplist can be installed with any package manager. E.g.:
    sudo apt-get update
    sudo apt-get install iplist
    Note: If sun-java* is installed by gdebi it requires to open the terminal part of gdebi and accept sun's license agreement.
    Packages for Feisty and Gutsy can be found in the 0.19 release.

    After the installation IPblock can be found in Applications -> Internet -> IPblock.


    The default choice for lists is similar to PeerGuardian.
    • level1.gz - Anti-P2P organizations and known government addresses
    • ads-trackers-and-bad-pr0n.gz - Advertising and data tracker servers
    • spyware.gz - Malicious spyware and adware servers
    • edu.gz - Educational institutions and universities
    • bogon.gz - Spoofed IP-addresses

    These lists are maintained by (list descriptions). Custom p2p or dat lists can easily be added. Note that lists can optionally be compressed with gzip.
    The URL file /etc/ipblock.lists contains list descriptions.


    All options can be configured in this and the network tab. Auto-updating lists is important and the default choice of 2 days is reasonable. Using out-of-date lists is not recommended.
    To ignore outgoing network traffic like HTTP or EMAIL (pop3) use the ignored ports section. Note that http and dns (domain) is ignored by default. The connection-settings specify which type of connections should be filtered.

    [1] NOTE: IPblock needs to be started after other firewall applications.

    FAQ on
    Last edited by uljanow; December 21st, 2010 at 07:10 AM. Reason: replaced aptitude with apt-get


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts