View unanswered posts    View active topics

All times are UTC - 6 hours





Post new topic Reply to topic  [ 3 posts ] 
Print view Previous topic   Next topic  
Author Message
Search for:
PostPosted: Thu Nov 22, 2007 10:09 pm 
Offline
Joined: Mon Aug 29, 2005 4:04 pm
Posts: 729
Location: Philadelphia, PA US
Just wanted to start a new thread on this rather than hijacking other one info was previously in.

http://mysettopbox.tv/phpBB2/viewtopic.php?t=9922

Perhaps you are using Democracy or Miro on your KnoppMyth box as a torrent client to download CreativeCommons media and don't want evil corporations leeching off you because you value your privacy.

Enter MoBlock, which uses IPTABLES rules to block IPs in a list file (/etc/moblock/guarding.p2p). I set this up on a R5F27 install and worked great.

Howto:

Code:
pico /etc/apt/sources.list


Append below 2 lines to the file and save/exit.
Code:
deb http://moblock-deb.sourceforge.net/debian etch main
deb-src http://moblock-deb.sourceforge.net/debian etch main


Update the GPG keys
Code:
gpg --keyserver wwwkeys.eu.pgp.net --recv 9072870B
gpg --export --armor 9072870B | sudo apt-key add -


Install moblock
Code:
apt-get update
apt-get install moblock-nfq


To manage blocked hosts

Code:
pico /etc/moblock/guarding.p2p


The included guarding.p2p file is pretty big and may end up blocking more that desired.

The blocklist configuration is stored in /etc/moblock/blocklists.list

http://www.bluetack.co.uk has a good explanation of what lists block what specific category.

Moblock's configuation can be found in /etc/moblock/moblock.conf

The configuration file is where IPs or companies can be white listed as well as TCP ports excluded from blocking.

http://moblock-deb.sourceforge.net/


Top
 Profile  
 
 Post subject:
PostPosted: Sat Sep 20, 2008 3:19 pm 
Offline
Joined: Wed Dec 10, 2003 8:31 pm
Posts: 1996
Location: /dev/null
After following the instructions on the sourceforge page for moblock, my installation (using the sid repos) fails. I've also tried the etch repos with the same failure.

The apt-get works and I'm asked to configure moblock which I do. It hangs after the lists have been downloaded though and refuses to start complaining about not being able to load kernel module xt_state. Log is below.

Thoughts anyone?

Here is my /etc/apr/source.list
Code:
deb http://moblock-deb.sourceforge.net/debian sid main
deb-src http://moblock-deb.sourceforge.net/debian sid main

#Debian repos
deb http://ftp.debian.org unstable main contrib non-free
deb-src http://ftp.debian.org unstable main contrib non-free


Here is the output of my apt-get:
Code:
# apt-get install moblock
Reading package lists... Done
Building dependency tree... Done
The following extra packages will be installed:
  libnetfilter-queue1 libnfnetlink0
Suggested packages:
  mobloquer
Recommended packages:
  p7zip p7zip-full
The following NEW packages will be installed:
  libnetfilter-queue1 libnfnetlink0 moblock
0 upgraded, 3 newly installed, 0 to remove and 872 not upgraded.
Need to get 102kB of archives.
After unpacking 508kB of additional disk space will be used.
Do you want to continue [Y/n]? y
Get:1 http://ftp.debian.org unstable/main libnfnetlink0 0.0.39-1 [12.3kB]
Get:2 http://ftp.debian.org unstable/main libnetfilter-queue1 0.0.13-1 [6966B]
Get:3 http://moblock-deb.sourceforge.net sid/main moblock 0.9~rc2-17 [83.2kB]
Fetched 102kB in 0s (139kB/s)
Preconfiguring packages ...
Selecting previously deselected package libnfnetlink0.
(Reading database ... 93317 files and directories currently installed.)
Unpacking libnfnetlink0 (from .../libnfnetlink0_0.0.39-1_i386.deb) ...
Selecting previously deselected package libnetfilter-queue1.
Unpacking libnetfilter-queue1 (from .../libnetfilter-queue1_0.0.13-1_i386.deb) ...
Selecting previously deselected package moblock.
Unpacking moblock (from .../moblock_0.9~rc2-17_i386.deb) ...
Setting up libnfnetlink0 (0.0.39-1) ...
Setting up libnetfilter-queue1 (0.0.13-1) ...
Setting up moblock (0.9~rc2-17) ...
Reloading MoBlock: moblock ... failed.
Trying an update instead to get missing blocklists, this may take several
minutes. You may do in another terminal a
"tail -f /var/log/moblock-control.log"
to follow the update process. Pressing "control" + "c" stops this.
The lists are saved to /var/spool/moblock/.
Updating blocklists and reloading MoBlock: moblock.

The following lists were updated:
 www.bluetack.co.uk/config/ads-trackers-and-bad-pr0n.gz of 2008-09-21 06:02
 www.bluetack.co.uk/config/bogon.gz of 2008-09-21 06:02
 www.bluetack.co.uk/config/dshield.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/fornonlancomputers.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/hijacked.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/iana-multicast.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/iana-private.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/iana-reserved.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/level1.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/level2.gz of 2008-09-21 06:02
 www.bluetack.co.uk/config/Microsoft.gz of 2008-09-21 05:51
 www.bluetack.co.uk/config/proxy.gz of 2008-09-21 05:57
 www.bluetack.co.uk/config/templist.gz of 2008-09-14 06:35
Starting MoBlock: moblockinvoke-rc.d: initscript moblock, action "start" failed.
dpkg: error processing moblock (--configure):
 subprocess post-installation script returned error exit status 170
Errors were encountered while processing:
 moblock
E: Sub-process /usr/bin/dpkg returned an error code (1)


Code:
# cat /var/log/moblock-control.log
2008-09-20 17:05:52 EDT Begin: moblock-control reload
Building blocklist^[[31m*^[[39;49m  Error 9: www.bluetack.co.uk/config/ads-trackers-and-bad-pr0n.gz not available. Check the /etc/moblock/blocklists.list and$

2008-09-20 17:05:52 EDT Begin: moblock-control update
Updating blocklists ...
Updating ads-trackers-and-bad-pr0n.gz.
Updating bogon.gz.
Updating dshield.gz.
Updating fornonlancomputers.gz.
Updating hijacked.gz.
Updating iana-multicast.gz.
Updating iana-private.gz.
Updating iana-reserved.gz.
Updating level1.gz.
Updating level2.gz.
Updating Microsoft.gz.
Updating proxy.gz.
Updating templist.gz.
Blocklists updated.
Building blocklist.
Installing blocklist to /etc/moblock/guarding.p2p.
MoBlock is not running, doing nothing.
2008-09-20 17:07:52 EDT End: moblock-control update
2008-09-20 17:07:53 EDT Begin: moblock-control start
^[[31m*^[[39;49m Error 170: Could not load kernel module xt_state, not starting MoBlock!
2008-09-20 17:07:54 EDT Begin: moblock-control reload
Building blocklist.
Installing blocklist to /etc/moblock/guarding.p2p.
MoBlock is not running, doing nothing.
2008-09-20 17:07:55 EDT End: moblock-control reload
2008-09-20 17:07:55 EDT Begin: moblock-control start
^[[31m*^[[39;49m Error 170: Could not load kernel module xt_state, not starting MoBlock!


Code:
# moblock-control status
Current iptables rules (this may take awhile):

Chain INPUT (policy ACCEPT 18385 packets, 19M bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination

Chain OUTPUT (policy ACCEPT 17971 packets, 1660K bytes)
 pkts bytes target     prot opt in     out     source               destination

Please check if the above printed iptables rules are correct!

moblock is not running.

_________________
Retired KM user (R4 - R6.04); friend to LH users.


Top
 Profile  
 
 Post subject:
PostPosted: Sun Sep 21, 2008 5:53 pm 
Offline
Joined: Wed Dec 10, 2003 8:31 pm
Posts: 1996
Location: /dev/null
I posted this in the Phoenix Lab's forums/Linux area (here is the post). Long story short, to get Moblock to work on R5.5, netfilter kernel support needs to enabled, but there doesn't seem to be anything (module or otherwise).

_________________
Retired KM user (R4 - R6.04); friend to LH users.


Top
 Profile  
 

Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 3 posts ] 


All times are UTC - 6 hours




Who is online

Users browsing this forum: No registered users and 29 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
cron
Powered by phpBB® Forum Software © phpBB Group

Theme Created By ceyhansuyu