VIPB (Versatile IP Blacklister) is a robust Bash tool for downloading, processing, and maintaining IPsum blacklists, and provides functionalities for managing firewalls and IP blacklists through automated and manual processes. It seamlessly integrates with Linux firewalls: it uses ipset along with iptables or firewalld (ufw support coming soon..).
It includes daily automation via cron job and integration with fail2ban.
Caution
This tool is still IN DEVELOPMENT and is designed for "domestic" server protection. It's intended for aware sudos. Please use responsibly and ensure you know the implications of firewalling / IP blocking in your environment before using this script.
- Daily Download & Ban: Automatically download and process IPsum blacklists every day via
cronjob. - Bulk Ban IP Lists: Process entire lists of IPs and subnets from a list file.
- Manual IP ban: Ban/unban individual IP addresses on a separate user list.
- Simplified Firewall Management: Safer handling of FirewallD and ipset operations
- New! v0.9.3 Log Extractor: Advanced security event analysis and pattern recognition
- IP Compression: Aggregates IP lists into /16 and /24 subnets for efficient security.
This function analyzes a list of potentially suspicious IP addresses, identifies patterns of repeated activity within subnets, and aggregates them into entire subnets (/24 or /16) based on user-defined tolerance thresholds.
- Manage ipsets: Creates and manages
ipsetrules for swift and reliable IP blocking. - Linux Firewall Support:
iptablesfirewalld(ufwsupport coming soon) - Fail2Ban: Works in harmony with
Fail2Ban.
- xGUI interface (see git
guibranch)
Ensure required dependencies are installed and active:
ipset7.0+firewalldoriptablescroncurlbash4.0+- optional
fail2ban
Clone the repository:
git clone https://github.com/simonquasar/vipb
cd vipb
chmod +x vipb.sh vipb-core.shRun sudo ./vipb.sh
Note
IP lists should be in the same folder and use .ipb extension, with one IP per line in CIDR notation.
Run via CLI/cron sudo ./vipb.sh [args]
βΊ VIPB.sh (v0.9.4) CLI ARGUMENTS
ban #.#.#.# ban single IP in manual/user list
unban #.#.#.# unban single IP in manual/user list
download # download lv #
compress [listfile.ipb] compress IPs list [optional: file.ipb]
banlist [listfile.ipb] ban IPs/subnets list [optional: file.ipb]
stats view banned VIPB IPs/subnets counts
true simulate cron/CLI (or autoban)
debug debug mode (echoes logs)
(*.ipb = list of IPs, one per line)
All operations are logged in the script directory. Debug mode provides detailed operation logging.
Contributions are welcome! Feel free to submit pull requests or open issues for bugs and feature requests.
This project is licensed under the GPL-2.0 License. See the LICENSE file for details.
- IPsum project for IP reputation data [https://github.com/stamparm/ipsum/]
- Alexander Klimetschek & miu for menu selectors [https://unix.stackexchange.com/questions/146570/arrow-key-enter-menu]
- Initial development by simonquasar