Skip to content
firehol blocklist to RouterOS address-list
Go
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
vendor/github.com/go-chi/chi
.gitignore
Dockerfile
Gopkg.lock
Gopkg.toml
README.md
main.go

README.md

tikfirehol

HTTP server which grabs FireHOL blocklists and converts them to MikroTik RouterOS address-list scripts.

For example, /netset/firehol_level1.rsc converts https://iplists.firehol.org/files/firehol_level1.netset, producing an rsc file like:

# firehol_level1.rsc
# Generated from https://iplists.firehol.org/files/firehol_level1.netset
# At 2018-03-26T04:09:09Z

:local log do={ :put $t; :log warning $t }
$log t="Beginning firehol_level1 blacklist update."

:local cl [ /system logging get number=0 value-name=topics ]
/system logging set numbers=0 topics="info,!firewall"
:do { /ip firewall address-list remove [find where list=firehol_level1] } on-error={}
:local i do={ /ip firewall address-list add timeout="25h" list=firehol_level1 address="$a" }

$i a=0.0.0.0/8
$i a=1.10.16.0/20
$i a=1.32.128.0/18

...

/system logging set numbers=0 topics=$cl

$log t="Finished firehol_level1 blacklist update."

The endpoint has the following query options to configure the script.

  • ?timeout=12h and similar sets the timeout used in the address-list command.
You can’t perform that action at this time.