more amazon networks to blacklist

author Peter Palfrader <peter@palfrader.org>

Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)

committer Peter Palfrader <peter@palfrader.org>

Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)
author Peter Palfrader <peter@palfrader.org>
Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)
committer Peter Palfrader <peter@palfrader.org>
Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)
diff --git a/modules/roles/manifests/snapshot_web.pp b/modules/roles/manifests/snapshot_web.pp

index 1adae17..d6ee115 100644 (file)
--- a/modules/roles/manifests/snapshot_web.pp
+++ b/modules/roles/manifests/snapshot_web.pp
@@ -36,13 +36,14 @@ class roles::snapshot_web {
         #  95.115.66.23
         #  52.192.0.0/11
         #  54.72.0.0/15
+       #  34.192.0.0/10
         #  34.240.0.0/13
         #  90.44.107.223
         #  195.154.173.12
         #  74.121.137.108
         @ferm::rule { 'dsa-snapshot-abusers':
                 prio  => "005",
-               rule  => "saddr (61.69.254.110 18.128.0.0/9 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15 99.137.191.34 51.15.215.91 208.91.68.213 198.11.128.0/18 159.226.95.0/24 84.204.194.0/24 211.13.205.0/24 63.32.0.0/14 54.72.0.0/15 95.115.66.23 52.192.0.0/11 54.72.0.0/15 34.240.0.0/13 90.44.107.223 195.154.173.12 74.121.137.108) DROP",
+               rule  => "saddr (61.69.254.110 18.128.0.0/9 3.120.0.0/14 35.156.0.0/14 52.58.0.0/15 99.137.191.34 51.15.215.91 208.91.68.213 198.11.128.0/18 159.226.95.0/24 84.204.194.0/24 211.13.205.0/24 63.32.0.0/14 54.72.0.0/15 95.115.66.23 52.192.0.0/11 54.72.0.0/15 34.192.0.0/10 34.240.0.0/13 90.44.107.223 195.154.173.12 74.121.137.108) DROP",
         }
  
         ensure_packages ( [
author	Peter Palfrader <peter@palfrader.org>
	Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)
committer	Peter Palfrader <peter@palfrader.org>
	Tue, 14 May 2019 14:13:04 +0000 (16:13 +0200)