Skip to content

Ban a whole country with an iptables script

Let's say you want to completely ban a country from accessing your servers.. E.g. : countries that have very shallow internet laws

Note : in regards to Epe's comment, this article has been updated with a newer script, which should be doing a better job. Please drop me a comment, I'd love to hear feedback !

This script will parse the RIPE database and generate the iptables rules automatically..

Download the script here :

The output would look like this :

-A INPUT -s -m state --state NEW -j DROP -A INPUT -s -m state --state NEW -j DROP -A INPUT -s -m state --state NEW -j DROP

Or like this if you just want blocks :

You can use the output with iptables or any other firewall