Spamhaus and DShield malicious ips combined into a single import script.
Blog post about it http://blog.squidblacklist.org/?p=297
Can be downloaded at the following url.
http://www.squidblacklist.org/downloads ... icious.rsc
And heres a couple of bonus free blacklists.
Tor Nodes IP Firewall Blacklist
http://www.squidblacklist.org/downloads ... rnodes.rsc
An ads blacklist for RouterOS DNS:
http://www.squidblacklist.org/downloads/tik-dns-ads.rsc
Firewall Rules Here:
Code: Select all
ip firewall filter add chain=input src-address-list=drop.dshield action=drop log=drop.dshield
Code: Select all
ip firewall filter add chain=input src-address-list=drop.spamhaus1 action=drop log=drop.spamhaus1
Code: Select all
ip firewall filter add chain=input src-address-list=drop.spamhaus2 action=drop log=drop.spamhaus2
http://joshaven.com/malc0de.rsc
http://joshaven.com/openbl.rsc
Credit to the Author for making these resources available.
Read more from the publisher http://joshaven.com/resources/tricks/mi ... ress-list/
The following single firewall rule will setup BOTH of the Josh Aven blacklists.
Code: Select all
ip firewall filter add chain=input src-address-list=drop.blacklist action=drop log=drop.blacklist
Go to System - Scheduler. and create a new task by clicking the blue plus button.

First schedule a download task:
Code: Select all
/ip firewall address-list remove [find where comment="OpenBL"]
/tool fetch address=joshaven.com host=joshaven.com mode=http src-path=/openbl.rsc
(paste this into the scheduler box)
Code: Select all
:log warning "Disabling system Logging";
import openbl.rsc
/system logging enable 0
Code: Select all
/tool fetch address=www.squidblacklist.org host=www.squidblacklist.org mode=http src-path=/downloads/drop.malicious.rsc
Code: Select all
:log warning "Disabling system Logging";
import drop.malicious.rsc
/system logging enable 0
Code: Select all
/ip firewall address-list remove [find where comment="malc0de"]
/tool fetch address=joshaven.com host=joshaven.com mode=http src-path=/malc0de.rsc
Code: Select all
:log warning "Disabling system Logging";
import malc0de.rsc
/system logging enable 0