It consists of a script to download, remove the old entries & add the new ones for any of the three lists… you just schedule it to happen to update your address lists with blacklist entries. It does not create any firewall rules so you’ll have implement the rule yourself.
The original lists have to be parsed into the mikrotik .rsc script format. I have a nightly parsed publicly accessible copies of the original lists on my site. I have also include the Linux script that you can run on your own Linux server if you would prefer to host your own copies of the lists. If you are interested in publicly hosting a copy of the list then send me links to your lists and I will update my page with alternative list sources. I prefer to respect the bandwidth of the list providers (the lists are free after all) so please limit the use of the server script.
Also if you are aware of other lists that would be helpful then let me know and I can look into parsing these as well.
Please let me know your stories if this script has helped at all.
In the script on the linked site I see some “loss of simplicity”
One moment… on second thought,
if accidentally (or maliciously) you insert /system reset skyp-backup etc. in your public available .rsc
the user that are using your file are …
I suggest to never use .rsc on any third part source…
The third part can inject any malicious code to read all data, obtain all config, password, private certificates and gain remote access… etc.
This is a nice solution.
How are you parsing the source text files into RouterOS add statements?
You posted additions (without a script) then you posted script statements that will remove in a loop.
I wrote similar app almost year ago, it converts SpamHaus and OpenBL lists to RouterOS script file (.rsc).
My app is Windows executable, attached to this post. List2Script_Conv.zip (371 KB)
Hope you find it useful,
So do you scheduled this EXE to run on a regular basis and put the text files on a web accessible server to download into your routers on a regular basis? One of the main reasons I wrote the scripts that I did was to have my address lists self maintaining.
You could do this all in perl. Run it on the web server and let the routerboard hit the script and download the file. I may have some time if anyone would be interested.
This could be easily done on demand but one of the reasons I am using a script run with cron is so that the source lists are not hit any more then once per day. Anyone can use the mikrotik formatted scripts that I am already hosting… If someone wanted to host their own on windows the exe file that was previously supplied should work fine. If someone wants to host their own on Linux then I have already posted a solution if you read the howto on my website it works very well.
One moment… on second thought,
if accidentally (or maliciously) you insert /system reset skyp-backup etc. in your public available .rsc
the user that are using your file are …
I suggest to never use .rsc on any third part source…
The third part can inject any malicious code to read all data, obtain all config, password, private certificates and gain remote access… etc.
