Skip to content
/ torblock Public

Traefik plugin for blocking traffic from the Tor network

License

Apache-2.0 license
13 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jpxd/torblock

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

.github/workflows

.github/workflows

 
 

examples

examples

 
 

.gitignore

.gitignore

 
 

.golangci.toml

.golangci.toml

 
 

.traefik.yml

.traefik.yml

 
 

LICENSE

LICENSE

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

netaddr.go

netaddr.go

 
 

torblock.go

torblock.go

 
 

torblock_test.go

torblock_test.go

 
 

Repository files navigation

TorBlock

TorBlock is a Traefik plugin which can block requests originating from the Tor network. The publicly available list of Tor exit nodes (https://check.torproject.org/exit-addresses) is fetched regularly in order to identify the requests to be blocked.

Configuration

Requirements: Traefik >= v2.5.5

Static

For each plugin, the Traefik static configuration must define the module name (as is usual for Go packages).

The following declaration (given here in YAML) defines an plugin:

# Static configuration
pilot:
  token: xxxxx

experimental:
  plugins:
    torblock:
      moduleName: github.com/jpxd/torblock
      version: v0.1.1

Here is an example of a file provider dynamic configuration (given here in YAML), where the interesting part is the http.middlewares section:

# Dynamic configuration

http:
  routers:
    my-router:
      rule: host(`demo.localhost`)
      service: service-foo
      entryPoints:
        - web
      middlewares:
        - my-middleware

  services:
   service-foo:
      loadBalancer:
        servers:
          - url: http://127.0.0.1:5000
  
  middlewares:
    my-middleware:
      torblock:
        enabled: true

Local Mode

Traefik also offers a developer mode that can be used for temporary testing or offline usage of plugins not hosted on GitHub. To use a plugin in local mode, the Traefik static configuration must define the module name (as is usual for Go packages) and a path to a Go workspace, which can be the local GOPATH or any directory.

The plugins must be placed in ./plugins-local directory, which should be next to the Traefik binary. The source code of the plugin should be organized as follows:

./plugins-local/
    └── src
        └── github.com
            └── jpxd
                └── torblock
                    ├── torblock.go
                    ├── torblock_test.go
                    ├── go.mod
                    ├── LICENSE
                    ├── Makefile
                    └── README.md

# Static configuration
pilot:
  token: xxxxx

experimental:
  localPlugins:
    example:
      moduleName: github.com/jpxd/torblock

(In the above example, the torblock plugin will be loaded from the path ./plugins-local/src/github.com/jpxd/torblock.)

# Dynamic configuration

http:
  routers:
    my-router:
      rule: host(`demo.localhost`)
      service: service-foo
      entryPoints:
        - web
      middlewares:
        - my-middleware

  services:
   service-foo:
      loadBalancer:
        servers:
          - url: http://127.0.0.1:5000
  
  middlewares:
    my-middleware:
      plugin:
        torblock:
          enabled: true

Examples

You can also see a working example docker-compose.yml in the examples directory, which loads the plugin in local mode.

About

Traefik plugin for blocking traffic from the Tor network

Topics

traefik traefik-plugin

Resources

Readme

License

Apache-2.0 license
Activity

Stars

13 stars

Watchers

1 watching

Forks

3 forks
Report repository

Releases 1

v0.1.1 Latest
Jan 2, 2022

Packages

No packages published

Languages