From 29db532312e742f2ec5133b57893898223a89481 Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Sun, 12 May 2019 20:54:30 +0200
Subject: [PATCH 1/1] blacklist 63.32.0.0/14

---
 modules/roles/manifests/snapshot_web.pp | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/modules/roles/manifests/snapshot_web.pp b/modules/roles/manifests/snapshot_web.pp
index 083f6e03e..7250b7d48 100644
--- a/modules/roles/manifests/snapshot_web.pp
+++ b/modules/roles/manifests/snapshot_web.pp
@@ -30,9 +30,11 @@ class roles::snapshot_web {
 	#  159.226.95.0/24
 	#  84.204.194.0/24
 	#  211.13.205.0/24
+	# 20190512 tens of thousands of queries
+	#  63.32.0.0/14
 	@ferm::rule { 'dsa-snapshot-abusers':
 		prio  => "005",
-		rule  => "saddr (61.69.254.110 18.128.0.0/9 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15 99.137.191.34 51.15.215.91 208.91.68.213 198.11.128.0/18 159.226.95.0/24 84.204.194.0/24 211.13.205.0/24) DROP",
+		rule  => "saddr (61.69.254.110 18.128.0.0/9 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15 99.137.191.34 51.15.215.91 208.91.68.213 198.11.128.0/18 159.226.95.0/24 84.204.194.0/24 211.13.205.0/24 63.32.0.0/14) DROP",
 	}
 
 	ensure_packages ( [
-- 
2.20.1