From 2f5daf5168b1cff48c0d759d1bd98af2b7ca7049 Mon Sep 17 00:00:00 2001 From: nyyu Date: Sun, 28 Mar 2021 15:47:27 +0200 Subject: [PATCH] add ipset-blacklist --- ipset-blacklist/PKGBUILD | 31 +++++++++++++++++++++++++ ipset-blacklist/ipset-blacklist.service | 10 ++++++++ ipset-blacklist/ipset-blacklist.timer | 10 ++++++++ 3 files changed, 51 insertions(+) create mode 100644 ipset-blacklist/PKGBUILD create mode 100644 ipset-blacklist/ipset-blacklist.service create mode 100644 ipset-blacklist/ipset-blacklist.timer diff --git a/ipset-blacklist/PKGBUILD b/ipset-blacklist/PKGBUILD new file mode 100644 index 0000000..508505e --- /dev/null +++ b/ipset-blacklist/PKGBUILD @@ -0,0 +1,31 @@ +pkgname=ipset-blacklist +pkgver=r133.ebfe5a5 +pkgrel=1 +arch=(any) +url="https://github.com/trick77/ipset-blacklist" +makedepends=('git') +depends=('ipset' 'iptables' 'curl') +source=( + git+https://github.com/trick77/ipset-blacklist.git + 'ipset-blacklist.service' + 'ipset-blacklist.timer' +) +sha256sums=('SKIP' + '89e0b207644b7640539ca66e87b99b6c8fcfae8409ed7b36999f8c7e65896afb' + 'ebd5dc1a38b650beaeeb70451c7315be1286ae10b945f5a2baa593502af32609') + +pkgver() { + cd "${srcdir}/${pkgname}" + + printf "r%s.%s" "$(git rev-list --count HEAD)" "$(git rev-parse --short HEAD)" +} + +package() { + cd "${srcdir}" + install -Dm644 ipset-blacklist.service "$pkgdir/usr/lib/systemd/system/ipset-blacklist.service" + install -Dm644 ipset-blacklist.timer "$pkgdir/usr/lib/systemd/system/ipset-blacklist.timer" + + cd "${srcdir}/${pkgname}" + install -Dm644 ipset-blacklist.conf "$pkgdir/etc/ipset-blacklist/ipset-blacklist.conf" + install -Dm755 update-blacklist.sh "$pkgdir/usr/bin/update-blacklist.sh" +} diff --git a/ipset-blacklist/ipset-blacklist.service b/ipset-blacklist/ipset-blacklist.service new file mode 100644 index 0000000..ad17c6e --- /dev/null +++ b/ipset-blacklist/ipset-blacklist.service @@ -0,0 +1,10 @@ +[Unit] +Description=ipset-blacklist +After=network.target + +[Service] +Type=oneshot +ExecStart=/usr/bin/update-blacklist.sh /etc/ipset-blacklist/ipset-blacklist.conf + +[Install] +WantedBy=multi-user.target \ No newline at end of file diff --git a/ipset-blacklist/ipset-blacklist.timer b/ipset-blacklist/ipset-blacklist.timer new file mode 100644 index 0000000..d06cc82 --- /dev/null +++ b/ipset-blacklist/ipset-blacklist.timer @@ -0,0 +1,10 @@ +[Unit] +Description=Daily ipset-blacklist update + +[Timer] +OnCalendar=daily +AccuracySec=12h +Persistent=true + +[Install] +WantedBy=timers.target \ No newline at end of file