From c602038ab10bd1a62fc7afaaa685026de80d52a0 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 12:32:40 +0530 Subject: [PATCH 01/31] mask last 16 bits not just last 8 bits --- privfrontends/templates/Caddyfile.j2 | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 7583170..d592a83 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -7,15 +7,15 @@ log { wrap json fields { request>remote_ip ip_mask { - ipv4 24 + ipv4 16 ipv6 64 } request>headers>X-Forwarded-For ip_mask { - ipv4 24 + ipv4 16 ipv6 64 } request>headers>client_ip ip_mask { - ipv4 24 + ipv4 16 ipv6 64 } request>headers>Cookie cookie { From ec5472ddf861dab28cd32622398ae9227c736989 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 12:44:10 +0530 Subject: [PATCH 02/31] client_ip shouldnt be under headers --- privfrontends/templates/Caddyfile.j2 | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index d592a83..dd743b1 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -10,11 +10,11 @@ log { ipv4 16 ipv6 64 } - request>headers>X-Forwarded-For ip_mask { + request>client_ip ip_mask { ipv4 16 ipv6 64 } - request>headers>client_ip ip_mask { + request>headers>X-Forwarded-For ip_mask { ipv4 16 ipv6 64 } From eceaab85f55469bfc927ca7917f3db951efba4a0 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 13:07:47 +0530 Subject: [PATCH 03/31] move logging to def --- privfrontends/templates/Caddyfile.j2 | 56 ++++++++++++++-------------- 1 file changed, 28 insertions(+), 28 deletions(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index dd743b1..764ad4a 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -1,32 +1,4 @@ { -log { - # Anonymised IPs, User-Agents, and Cookies, also removed the URI as mentionned in the privacy policy. - # Subject to change, if we find any missing config we haven't filtered, it will be added. - output file /var/log/caddy/caddy.log - format filter { - wrap json - fields { - request>remote_ip ip_mask { - ipv4 16 - ipv6 64 - } - request>client_ip ip_mask { - ipv4 16 - ipv6 64 - } - request>headers>X-Forwarded-For ip_mask { - ipv4 16 - ipv6 64 - } - request>headers>Cookie cookie { - replace session REDACTED - delete secret - } - request>headers>User-Agent delete - request>uri delete - } - } -} order rate_limit before basicauth } @@ -76,6 +48,34 @@ log { defer } + log { + # Anonymised IPs, User-Agents, and Cookies, also removed the URI as mentionned in the privacy policy. + # Subject to change, if we find any missing config we haven't filtered, it will be added. + output file /var/log/caddy/caddy.log + format filter { + wrap json + fields { + request>remote_ip ip_mask { + ipv4 16 + ipv6 64 + } + request>client_ip ip_mask { + ipv4 16 + ipv6 64 + } + request>headers>X-Forwarded-For ip_mask { + ipv4 16 + ipv6 64 + } + request>headers>Cookie cookie { + replace session REDACTED + delete secret + } + request>headers>User-Agent delete + request>uri delete + } + } + } import acmedns } From 0609f9768d7c466c2c68147ef8a03a07606e2359 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 13:14:03 +0530 Subject: [PATCH 04/31] anonymize urls further --- privfrontends/templates/Caddyfile.j2 | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 764ad4a..51951bf 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -72,7 +72,9 @@ delete secret } request>headers>User-Agent delete - request>uri delete + request>headers>Onion-Location delete + request>headers>Referer delete + request>uri replace "/ABCDF" } } } From a66e16dfb704f2e2ef0763f40e52b764a2365574 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 13:25:19 +0530 Subject: [PATCH 05/31] add goaccess official debian repo --- all/playbook.yaml | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/all/playbook.yaml b/all/playbook.yaml index 65800d4..b38d4d9 100644 --- a/all/playbook.yaml +++ b/all/playbook.yaml @@ -24,6 +24,15 @@ ansible.builtin.apt_repository: repo: deb [signed-by=/usr/share/keyrings/knot.gpg] https://deb.knot-dns.cz/knot-latest/ bookworm main state: present + - name: Get GoAccess GPG keys + ansible.builtin.get_url: + url: https://deb.goaccess.io/gnupg.key + dest: /usr/share/keyrings/goaccess.gpg + mode: '0644' + - name: Enable goaccess repo + ansible.builtin.apt_repository: + repo: deb [signed-by=/usr/share/keyrings/goaccess.gpg arch=amd64] https://deb.goaccess.io/ bookworm main + state: present - name: Install Required Programs / APT ansible.builtin.apt: name: From 36d665834c4551e92671cf4314133debf3073346 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 13:41:51 +0530 Subject: [PATCH 06/31] fix typo in gpg --- all/playbook.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/all/playbook.yaml b/all/playbook.yaml index b38d4d9..f1fe1c5 100644 --- a/all/playbook.yaml +++ b/all/playbook.yaml @@ -26,7 +26,7 @@ state: present - name: Get GoAccess GPG keys ansible.builtin.get_url: - url: https://deb.goaccess.io/gnupg.key + url: https://deb.goaccess.io/gnugpg.key dest: /usr/share/keyrings/goaccess.gpg mode: '0644' - name: Enable goaccess repo From aeea7a66d16d34e892d190929d6ea84eeb452c86 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 14:10:42 +0530 Subject: [PATCH 07/31] its an asc key --- all/playbook.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/all/playbook.yaml b/all/playbook.yaml index f1fe1c5..083d891 100644 --- a/all/playbook.yaml +++ b/all/playbook.yaml @@ -27,7 +27,7 @@ - name: Get GoAccess GPG keys ansible.builtin.get_url: url: https://deb.goaccess.io/gnugpg.key - dest: /usr/share/keyrings/goaccess.gpg + dest: /usr/share/keyrings/goaccess.asc mode: '0644' - name: Enable goaccess repo ansible.builtin.apt_repository: From 8d9db7f7a0ec76c1b563ffe21be85931b9a9d171 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 14:17:20 +0530 Subject: [PATCH 08/31] forgot to change gpg -> asc --- all/playbook.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/all/playbook.yaml b/all/playbook.yaml index 083d891..93bba67 100644 --- a/all/playbook.yaml +++ b/all/playbook.yaml @@ -31,7 +31,7 @@ mode: '0644' - name: Enable goaccess repo ansible.builtin.apt_repository: - repo: deb [signed-by=/usr/share/keyrings/goaccess.gpg arch=amd64] https://deb.goaccess.io/ bookworm main + repo: deb [signed-by=/usr/share/keyrings/goaccess.asc arch=amd64] https://deb.goaccess.io/ bookworm main state: present - name: Install Required Programs / APT ansible.builtin.apt: From 2953d1442b10f4e1f431f15b0272a651401e91d7 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 16:44:53 +0530 Subject: [PATCH 09/31] add freshrss --- privfrontends/templates/in/apps.Caddyfile | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/privfrontends/templates/in/apps.Caddyfile b/privfrontends/templates/in/apps.Caddyfile index 23f136f..6e02ee4 100644 --- a/privfrontends/templates/in/apps.Caddyfile +++ b/privfrontends/templates/in/apps.Caddyfile @@ -273,3 +273,8 @@ timetagger.projectsegfau.lt tt.projectsegfau.lt tt.psf.lt { reverse_proxy :9900 import def } + +rss.projectsegfau.lt freshrss.projectsegfau.lt rss.psf.lt { + reverse_proxy :3529 + import def +} From d09ef2c8e9df2bc94e14ab30fa983d125621cb6c Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 11 Apr 2024 21:12:14 +0530 Subject: [PATCH 10/31] add tor for freshrss --- privfrontends/templates/eu/darknet.Caddyfile | 6 ++++++ privfrontends/templates/in/apps.Caddyfile | 1 + 2 files changed, 7 insertions(+) diff --git a/privfrontends/templates/eu/darknet.Caddyfile b/privfrontends/templates/eu/darknet.Caddyfile index 0f1b738..a53e181 100644 --- a/privfrontends/templates/eu/darknet.Caddyfile +++ b/privfrontends/templates/eu/darknet.Caddyfile @@ -139,3 +139,9 @@ http://healthchecks.pjsfkvpxlinjamtawaksbnnaqs2fc2mtvmozrzckxh7f3kis6yea25ad.oni header_up Host "healthchecks.projectsegfau.lt" } } +http://rss.pjsfkvpxlinjamtawaksbnnaqs2fc2mtvmozrzckxh7f3kis6yea25ad.onion { + import tor rss + reverse_proxy https://rss.projectsegfau.lt { + header_up Host "rss.projectsegfau.lt" + } +} diff --git a/privfrontends/templates/in/apps.Caddyfile b/privfrontends/templates/in/apps.Caddyfile index 6e02ee4..eaa50ce 100644 --- a/privfrontends/templates/in/apps.Caddyfile +++ b/privfrontends/templates/in/apps.Caddyfile @@ -277,4 +277,5 @@ timetagger.projectsegfau.lt tt.projectsegfau.lt tt.psf.lt { rss.projectsegfau.lt freshrss.projectsegfau.lt rss.psf.lt { reverse_proxy :3529 import def + import torloc rss } From 491ef10392a84426af6a6dd88305f9167d7fb06a Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Sun, 21 Apr 2024 14:26:11 +0530 Subject: [PATCH 11/31] remove deprecated XSS-Protection --- privfrontends/templates/Caddyfile.j2 | 4 ---- 1 file changed, 4 deletions(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 51951bf..7415670 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -6,7 +6,6 @@ header { -Strict-Transport-Security -Referrer-Policy - -X-XSS-Protection -Content-Security-Policy # disable clients from sniffing the media type X-Content-Type-Options nosniff @@ -44,7 +43,6 @@ # clickjacking protection X-Frame-Options SAMEORIGIN - X-XSS-Protection "1; mode=block" defer } @@ -224,8 +222,6 @@ search.{{ server_prefix }}.projectsegfau.lt search.projectsegfau.lt s.psf.lt s.{ header { # Enable HTTP Strict Transport Security (HSTS) to force clients to always connect via HTTPS Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" - # Enable cross-site filter (XSS) and tell browser to block detected attacks - X-XSS-Protection "1; mode=block" # Prevent some browsers from MIME-sniffing a response away from the declared Content-Type X-Content-Type-Options "nosniff" # Disable some features From 1f524d25bcaf4d40e5d8565f5642a33b91e839ba Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 8 May 2024 11:55:11 +0530 Subject: [PATCH 12/31] add priviblur; inv -> ratelimiters.log --- privfrontends/configs/priviblur/config.toml | 68 +++++++++++++++++++++ privfrontends/templates/Caddyfile.j2 | 10 +++ privfrontends/templates/eu/misc.Caddyfile | 5 ++ privfrontends/vars.yaml | 18 ++++++ 4 files changed, 101 insertions(+) create mode 100644 privfrontends/configs/priviblur/config.toml diff --git a/privfrontends/configs/priviblur/config.toml b/privfrontends/configs/priviblur/config.toml new file mode 100644 index 0000000..4c85bbf --- /dev/null +++ b/privfrontends/configs/priviblur/config.toml @@ -0,0 +1,68 @@ +# Controls deployment options +[deployment] + host = "127.0.0.1" + port = 8000 + + # Amount of worker Priviblur instances to spawn. Increases speed significantly. + workers = 4 + + # # If you're running Priviblur behind a remote proxy, one or more of the following must be set + # # can also be set via env variables by captialzing and prefixing with PRIVIBLUR_ + # # + # # For more information see + # # https://sanic.dev/en/guide/advanced/proxy-headers.html + # # + # # Default: None + # # + # forwarded_secret = + # real_ip_header = + # proxies_count = + +# Controls redis cache options +# Ignore to disable the cache +# +[cache] + url = priviblur-redis:6379 + + # Number of seconds to cache poll results from active polls + cache_active_poll_results_for = 3600 + + # Number of seconds to cache poll results from expired polls + cache_expired_poll_results_for = 86400 + + # Number of seconds to cache feed (explore, search, etc) results for + cache_feed_for = 3600 + + # Number of seconds to cache blog feed (blog posts, blog search, blog tagged posts, etc) results for + cache_blog_feed_for = 3600 + + # Number of seconds to cache individual posts for + cache_blog_post_for = 300 + +# Controls behaviors pertaining to the way Priviblur requests Tumblr +[priviblur_backend] + # # Timeout for requests to Tumblr's API + main_response_timeout = 10 + + # # Timeout for fetching image responses from Tumblr + image_response_timeout = 30 + + +# Controls logging behavior +# +# Use Python's numerical logging levels +# https://docs.python.org/3/howto/logging.html#logging-levels +# [logging] + # # Sanic (Server)'s logging level' + # sanic_logging_level = 30 + + # # Priviblur's logging level + # priviblur_logging_level = 30 + + # # Priviblur extractor's logging level + # priviblur_extractor_logging_level = 20 + + +# [misc] + # # Enable sanic's dev mode + # dev_mode = false diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 7415670..7f3364c 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -144,6 +144,11 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { rewrite /vi/* ?host=i.ytimg.com } header -X-Frame-Options + log { + # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. + output file /var/log/caddy/ratelimiters.log + format json + } import def import torloc inv } @@ -271,3 +276,8 @@ pi.{{ server_prefix }}.psf.lt { header -X-Frame-Options import def } +priviblur.{{ server_prefix }}.projectsegfau.lt priviblur.projectsegfau.lt pb.psf.lt pb.{{ server_prefix }}.psf.lt { + import def + reverse_proxy :9084 + import torloc priviblur +} diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index 315a75f..e5caf5c 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -6,6 +6,11 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg reverse_proxy localhost:7573 { header_up Host "invidious.projectsegfau.lt" } + log { + # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. + output file /var/log/caddy/ratelimiters.log + format json + } @pipedproxy { path /videoplayback path /videoplayback/* diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index 0115f3c..9a45c1b 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -242,6 +242,24 @@ apps: REDIS_REPLICATION_MODE: master mounts: - "{{data_dir}}/teddit/redis-data:/data" + priviblur: + needs_configs_dir: true + needs_data_dir: true + docker_settings: + services: + - name: priviblur + image: quay.io/pussthecat.org/priviblur:latest + ports: + - "9084:8000" + mounts: + - "{{configs_dir}}/priviblur/config.toml:/priviblur/config.toml:Z,ro" + - name: priviblur-redis + image: redis:6.2.5-alpine + command: redis-server + environment: + REDIS_REPLICATION_MODE: master + mounts: + - "{{data_dir}}/priviblur/redis-data:/data" watchtower: needs_configs_dir: false needs_data_dir: false From 1be1de64b24cecd8c3c429dd8d025a927baa10be Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 8 May 2024 12:24:19 +0530 Subject: [PATCH 13/31] fix typo --- privfrontends/vars.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index 9a45c1b..2c6fab1 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -248,7 +248,7 @@ apps: docker_settings: services: - name: priviblur - image: quay.io/pussthecat.org/priviblur:latest + image: quay.io/pussthecatorg/priviblur:latest ports: - "9084:8000" mounts: From 2f8c1e824648948c30652481be002517e97a3fa9 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 8 May 2024 17:16:29 +0530 Subject: [PATCH 14/31] fix config --- privfrontends/configs/priviblur/config.toml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/privfrontends/configs/priviblur/config.toml b/privfrontends/configs/priviblur/config.toml index 4c85bbf..5bb6792 100644 --- a/privfrontends/configs/priviblur/config.toml +++ b/privfrontends/configs/priviblur/config.toml @@ -1,6 +1,6 @@ # Controls deployment options [deployment] - host = "127.0.0.1" + host = "0.0.0.0" port = 8000 # Amount of worker Priviblur instances to spawn. Increases speed significantly. @@ -22,7 +22,7 @@ # Ignore to disable the cache # [cache] - url = priviblur-redis:6379 + url = "redis://priviblur-redis:6379" # Number of seconds to cache poll results from active polls cache_active_poll_results_for = 3600 From 1feed32d7c488a14d6c3b448082cac11d5c93a47 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 9 May 2024 15:15:43 +0530 Subject: [PATCH 15/31] remove localhost: from caddy --- privfrontends/templates/eu/misc.Caddyfile | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index e5caf5c..68e08b1 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -3,7 +3,7 @@ sl.projectsegfau.lt sl.psf.lt { import def } inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectsegfau.lt, i.psf.lt { - reverse_proxy localhost:7573 { + reverse_proxy :7573 { header_up Host "invidious.projectsegfau.lt" } log { @@ -45,7 +45,7 @@ pi.psf.lt { import def } proxy.lbry.projectsegfau.lt { - reverse_proxy localhost:3001 + reverse_proxy :3001 import def } aryak.me { @@ -72,7 +72,7 @@ www.midou.dev midou.dev { # header_up Host {http.reverse_proxy.upstream.hostport} # } #root * /var/www/midouwebsite -reverse_proxy http://localhost:3000 +reverse_proxy :3000 # Apparently sveltekit built apps needs to have strict path tries. #try_files {path} {path}/index.html {path}.html =404 #file_server From 1b517bb306830f0343e739a330164d2df00e320f Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Thu, 9 May 2024 15:27:18 +0530 Subject: [PATCH 16/31] invidious: disable CSP --- privfrontends/templates/Caddyfile.j2 | 3 ++- privfrontends/templates/eu/misc.Caddyfile | 1 + 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 7f3364c..f80c63b 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -143,13 +143,14 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { uri @jpgRedirect replace /maxres.jpg /maxres2.jpg rewrite /vi/* ?host=i.ytimg.com } - header -X-Frame-Options log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log format json } import def + header -X-Frame-Options + header -Content-Security-Policy import torloc inv } gothub.{{ server_prefix }}.projectsegfau.lt gothub.projectsegfau.lt gh.psf.lt gh.{{ server_prefix }}.psf.lt { diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index 68e08b1..4d005a0 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -30,6 +30,7 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg } import def header -X-Frame-Options + header -Content-Security-Policy import torloc invbp } piped.projectsegfau.lt proxy.piped.projectsegfau.lt api.piped.projectsegfau.lt { From e5ebdf73b1634e2cb7c9bd6d52f101417d2d13c5 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Sun, 12 May 2024 20:06:08 +0530 Subject: [PATCH 17/31] use the privacydev nitter image --- privfrontends/vars.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index 2c6fab1..483f58c 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -125,7 +125,7 @@ apps: docker_settings: services: - name: nitter - image: codeberg.org/aryak/nitter-image:latest + image: ghcr.io/privacydevel/nitter:master ports: - "8387:8080" mounts: From 5d882286d3546bd13a277572e15907660addc633 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Sun, 26 May 2024 13:00:31 +0530 Subject: [PATCH 18/31] move logging after importing def --- privfrontends/templates/Caddyfile.j2 | 7 +++---- privfrontends/templates/eu/misc.Caddyfile | 10 +++++----- 2 files changed, 8 insertions(+), 9 deletions(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index f80c63b..1ce61fd 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -143,15 +143,14 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { uri @jpgRedirect replace /maxres.jpg /maxres2.jpg rewrite /vi/* ?host=i.ytimg.com } + import def + header -X-Frame-Options + header -Content-Security-Policy log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log format json } - import def - header -X-Frame-Options - header -Content-Security-Policy - import torloc inv } gothub.{{ server_prefix }}.projectsegfau.lt gothub.projectsegfau.lt gh.psf.lt gh.{{ server_prefix }}.psf.lt { reverse_proxy :1024 diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index 4d005a0..6e074b6 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -6,11 +6,6 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg reverse_proxy :7573 { header_up Host "invidious.projectsegfau.lt" } - log { - # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. - output file /var/log/caddy/ratelimiters.log - format json - } @pipedproxy { path /videoplayback path /videoplayback/* @@ -31,6 +26,11 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg import def header -X-Frame-Options header -Content-Security-Policy + log { + # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. + output file /var/log/caddy/ratelimiters.log + format json + } import torloc invbp } piped.projectsegfau.lt proxy.piped.projectsegfau.lt api.piped.projectsegfau.lt { From fc9c1065b950868a33401aa7243c513a7611bd26 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Sun, 26 May 2024 13:05:12 +0530 Subject: [PATCH 19/31] add ratelimit for inv --- privfrontends/templates/Caddyfile.j2 | 2 ++ privfrontends/templates/eu/misc.Caddyfile | 2 ++ 2 files changed, 4 insertions(+) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 1ce61fd..b0bfd64 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -146,6 +146,8 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { import def header -X-Frame-Options header -Content-Security-Policy + @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* + rate_limit @ratelimit {remote.ip} 10r/s log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index 6e074b6..9e18fd4 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -26,6 +26,8 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg import def header -X-Frame-Options header -Content-Security-Policy + @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* + rate_limit @ratelimit {remote.ip} 10r/s log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log From bc09fb9101d424f1a19b1656cf303767144700df Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Sun, 26 May 2024 14:38:28 +0530 Subject: [PATCH 20/31] add a minute-based ratelimit as well --- privfrontends/templates/Caddyfile.j2 | 1 + privfrontends/templates/eu/misc.Caddyfile | 1 + 2 files changed, 2 insertions(+) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index b0bfd64..7216a00 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -148,6 +148,7 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { header -Content-Security-Policy @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* rate_limit @ratelimit {remote.ip} 10r/s + rate_limit @ratelimit {remote.ip} 100r/m log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index 9e18fd4..ad846e8 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -28,6 +28,7 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg header -Content-Security-Policy @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* rate_limit @ratelimit {remote.ip} 10r/s + rate_limit @ratelimit {remote.ip} 100r/m log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log From 353640098e70ffd05649ac1234c9df55ea27c234 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Mon, 27 May 2024 19:52:16 +0530 Subject: [PATCH 21/31] block alibaba --- privfrontends/blocked-ranges.yaml | 2 ++ privfrontends/playbook.yaml | 2 ++ privfrontends/templates/Caddyfile.j2 | 4 ++++ 3 files changed, 8 insertions(+) create mode 100644 privfrontends/blocked-ranges.yaml diff --git a/privfrontends/blocked-ranges.yaml b/privfrontends/blocked-ranges.yaml new file mode 100644 index 0000000..4b67981 --- /dev/null +++ b/privfrontends/blocked-ranges.yaml @@ -0,0 +1,2 @@ +# As of now, this only includes Alibaba AS45102 +blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24" diff --git a/privfrontends/playbook.yaml b/privfrontends/playbook.yaml index 76421df..a271b66 100644 --- a/privfrontends/playbook.yaml +++ b/privfrontends/playbook.yaml @@ -16,6 +16,8 @@ when: service.value.docker_settings - name: Setup Caddy hosts: privfrontends + vars_files: + - ./blocked-ranges.yaml tasks: - name: Copy Caddyfile ansible.builtin.template: diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 7216a00..07eba5a 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -76,6 +76,10 @@ } } } + @denied client_ip {{ blocked_ranges }} + respond @denied 403 "Unfortunately, your IP is part of a range that has been involved in mass spam to our servers. If you think our action was a mistake, please email contact@projectsegfau.lt." + + import acmedns } From 3fb80235c752f7ca04c3fe61df024a745facf442 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Mon, 27 May 2024 21:23:42 +0530 Subject: [PATCH 22/31] fix respond syntaz --- privfrontends/templates/Caddyfile.j2 | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 07eba5a..386a595 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -77,7 +77,7 @@ } } @denied client_ip {{ blocked_ranges }} - respond @denied 403 "Unfortunately, your IP is part of a range that has been involved in mass spam to our servers. If you think our action was a mistake, please email contact@projectsegfau.lt." + respond @denied "Unfortunately, your IP is part of a range that has been involved in mass spam to our servers. If you think our action was a mistake, please email contact@projectsegfau.lt." 403 import acmedns From 4ba4415d3166c62c7304d9277ea15fd9106dd611 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Tue, 28 May 2024 17:16:10 +0530 Subject: [PATCH 23/31] knot restarts --- cron/knot-restart.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+) create mode 100644 cron/knot-restart.yaml diff --git a/cron/knot-restart.yaml b/cron/knot-restart.yaml new file mode 100644 index 0000000..ea43921 --- /dev/null +++ b/cron/knot-restart.yaml @@ -0,0 +1,12 @@ +--- +- name: Knot Restarts (EU/US) + hosts: eu,us + vars: + services: + - knot + tasks: + - name: Do thing + ansible.builtin.systemd_service: + state: restarted + name: knot + with_items: "{{ services }}" From f4d089e697b7830f58ae5d7a5c171e9725488b10 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Tue, 28 May 2024 18:51:19 +0530 Subject: [PATCH 24/31] more ips! --- privfrontends/blocked-ranges.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/blocked-ranges.yaml b/privfrontends/blocked-ranges.yaml index 4b67981..2b850d2 100644 --- a/privfrontends/blocked-ranges.yaml +++ b/privfrontends/blocked-ranges.yaml @@ -1,2 +1,2 @@ # As of now, this only includes Alibaba AS45102 -blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24" +blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24 44.227.217.144 34.213.214.55 220.128.134.76 60.248.95.103 52.11.161.32 34.211.9.94 150.136.181.247 203.208.88.218 98.176.25.122 83.59.25.87 76.33.55.163 2600:1700:91a0:2430:4093:56ae:852f:f4f2 2603:8001:10f0:a340:6c6e:3d43:1197:4c3b 2001:978:6402:3439:4b76:6880:2b7:a625 2a0d:5940:99:3::1 5.114.229.115 63.231.152.212 217.218.237.142 34.211.200.85 81.209.177.145 212.83.56.126 2a02:c7c:7b0c:4500:90fc:e3d9:2491:cdaf 198.44.136.173 87.151.168.30 106.51.173.44 2a0b:f4c0:16c:3::1 14.226.76.209 159.89.193.220" From 1705998e11dfd90a3164ef437ce2c8a4a2722571 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Tue, 28 May 2024 20:30:10 +0530 Subject: [PATCH 25/31] ratelimit pubsub --- privfrontends/templates/Caddyfile.j2 | 2 ++ privfrontends/templates/eu/misc.Caddyfile | 2 ++ 2 files changed, 4 insertions(+) diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index 386a595..c413008 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -153,6 +153,8 @@ inv.{{ server_prefix }}.projectsegfau.lt i.{{ server_prefix }}.psf.lt { @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* rate_limit @ratelimit {remote.ip} 10r/s rate_limit @ratelimit {remote.ip} 100r/m + @ratelimit_pubsub path /feed/webhook /feed/webhook/* + rate_limit @ratelimit_pubsub {remote.ip} 2r/s 404 log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log diff --git a/privfrontends/templates/eu/misc.Caddyfile b/privfrontends/templates/eu/misc.Caddyfile index ad846e8..80b4e90 100644 --- a/privfrontends/templates/eu/misc.Caddyfile +++ b/privfrontends/templates/eu/misc.Caddyfile @@ -29,6 +29,8 @@ inv.bp.projectsegfau.lt, i.bp.psf.lt, invidious.projectsegfau.lt, inv.projectseg @ratelimit not path /videoplayback/* /ggpht/* /vi/* /videoplayback /videojs/* /css/* /js/* /fonts/* /apple-touch-icon.png /favicon-16x16.png /feed/webhook /feed/webhook/* rate_limit @ratelimit {remote.ip} 10r/s rate_limit @ratelimit {remote.ip} 100r/m + @ratelimit_pubsub path /feed/webhook /feed/webhook/* + rate_limit @ratelimit_pubsub {remote.ip} 2r/s 404 log { # This is temporarily required to monitor nitter traffic due to scrapers being more active, so we need to monitor and rate limit them at a later date. output file /var/log/caddy/ratelimiters.log From b77b1258a7c97172459e8f351190e4a1e913ffe1 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Tue, 28 May 2024 21:08:52 +0530 Subject: [PATCH 26/31] i kinda broke status by blockin those ips --- privfrontends/blocked-ranges.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/blocked-ranges.yaml b/privfrontends/blocked-ranges.yaml index 2b850d2..4280ac7 100644 --- a/privfrontends/blocked-ranges.yaml +++ b/privfrontends/blocked-ranges.yaml @@ -1,2 +1,2 @@ # As of now, this only includes Alibaba AS45102 -blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24 44.227.217.144 34.213.214.55 220.128.134.76 60.248.95.103 52.11.161.32 34.211.9.94 150.136.181.247 203.208.88.218 98.176.25.122 83.59.25.87 76.33.55.163 2600:1700:91a0:2430:4093:56ae:852f:f4f2 2603:8001:10f0:a340:6c6e:3d43:1197:4c3b 2001:978:6402:3439:4b76:6880:2b7:a625 2a0d:5940:99:3::1 5.114.229.115 63.231.152.212 217.218.237.142 34.211.200.85 81.209.177.145 212.83.56.126 2a02:c7c:7b0c:4500:90fc:e3d9:2491:cdaf 198.44.136.173 87.151.168.30 106.51.173.44 2a0b:f4c0:16c:3::1 14.226.76.209 159.89.193.220" +blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24 From 42cfe38193bae6e39add30bb19ee43b2b6f86ab5 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Tue, 28 May 2024 21:10:53 +0530 Subject: [PATCH 27/31] close quotes --- privfrontends/blocked-ranges.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/blocked-ranges.yaml b/privfrontends/blocked-ranges.yaml index 4280ac7..4b67981 100644 --- a/privfrontends/blocked-ranges.yaml +++ b/privfrontends/blocked-ranges.yaml @@ -1,2 +1,2 @@ # As of now, this only includes Alibaba AS45102 -blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24 +blocked_ranges: "2400:b200:4100::/48 2400:b200:4101::/48 2400:b200:4102::/48 2400:b200:4103::/48 2401:b180:4100::/48 2404:2280:1000::/36 2404:2280:1000::/37 2404:2280:1800::/37 2404:2280:2000::/36 2404:2280:2000::/37 2404:2280:2800::/37 2404:2280:4ffe::/48 2404:2280:4fff::/48 2408:4000:1000::/48 2408:4000:1001::/48 2408:4009:500::/48 240b:4000::/32 240b:4000::/33 240b:4000:8000::/33 240b:4001::/32 240b:4001::/33 240b:4001:8000::/33 240b:4002::/32 240b:4002::/33 240b:4002:8000::/33 240b:4003:e::/48 240b:4004::/32 240b:4004::/33 240b:4004:8000::/33 240b:4005::/32 240b:4005::/33 240b:4005:8000::/33 240b:4007::/32 240b:4007::/33 240b:4007:8000::/33 240b:4007:fffd::/48 240b:4009::/32 240b:4009::/33 240b:4009:8000::/33 240b:400b::/32 240b:400b::/33 240b:400b:8000::/33 240b:400c::/32 240b:400c::/33 240b:400c::/40 240b:400c::/41 240b:400c:80::/41 240b:400c:100::/40 240b:400c:100::/41 240b:400c:180::/41 240b:400c:f00::/48 240b:400c:f01::/48 240b:400c:8000::/33 240b:400d::/32 240b:400d::/33 240b:400d:8000::/33 240b:400e::/32 240b:400e::/33 240b:400e:8000::/33 240b:400f::/32 240b:400f::/33 240b:400f:8000::/33 240b:4011::/32 240b:4011::/33 240b:4011:8000::/33 240b:4011:fffc::/48 240b:4012::/48 5.181.224.0/23 8.208.0.0/16 8.208.0.0/17 8.208.0.0/18 8.208.0.0/19 8.208.32.0/19 8.208.128.0/17 8.209.0.0/19 8.209.0.0/20 8.209.16.0/20 8.209.36.0/23 8.209.36.0/24 8.209.37.0/24 8.209.38.0/23 8.209.38.0/24 8.209.39.0/24 8.209.40.0/22 8.209.40.0/23 8.209.42.0/23 8.209.44.0/22 8.209.44.0/23 8.209.46.0/23 8.209.48.0/20 8.209.48.0/21 8.209.56.0/21 8.209.64.0/18 8.209.64.0/19 8.209.96.0/19 8.209.128.0/18 8.209.128.0/19 8.209.160.0/19 8.209.192.0/18 8.209.192.0/19 8.209.224.0/19 8.210.0.0/16 8.210.0.0/17 8.210.128.0/17 8.210.240.0/24 8.211.0.0/17 8.211.0.0/18 8.211.64.0/18 8.211.128.0/18 8.211.128.0/19 8.211.160.0/19 8.211.192.0/18 8.211.192.0/19 8.211.224.0/19 8.211.226.0/24 8.212.0.0/17 8.212.0.0/18 8.212.64.0/18 8.212.128.0/18 8.212.128.0/19 8.212.160.0/19 8.212.192.0/18 8.212.192.0/19 8.212.224.0/19 8.213.0.0/17 8.213.0.0/18 8.213.64.0/18 8.213.128.0/19 8.213.128.0/20 8.213.144.0/20 8.213.160.0/21 8.213.160.0/22 8.213.164.0/22 8.213.176.0/20 8.213.176.0/21 8.213.184.0/21 8.213.192.0/18 8.213.192.0/19 8.213.224.0/19 8.213.251.0/24 8.213.252.0/24 8.214.0.0/16 8.214.0.0/17 8.214.128.0/17 8.215.0.0/16 8.215.0.0/17 8.215.128.0/17 8.215.160.0/24 8.216.0.0/17 8.216.0.0/18 8.216.64.0/18 8.216.69.0/24 8.216.128.0/17 8.216.128.0/18 8.216.148.0/24 8.216.192.0/18 8.217.0.0/16 8.217.0.0/17 8.217.128.0/17 8.218.0.0/16 8.218.0.0/17 8.218.128.0/17 8.219.0.0/16 8.219.0.0/17 8.219.128.0/17 8.220.0.0/18 8.220.0.0/19 8.220.32.0/19 8.220.64.0/18 8.220.64.0/19 8.220.96.0/19 8.220.116.0/23 8.220.116.0/24 8.220.128.0/18 8.220.128.0/19 8.220.147.0/24 8.220.160.0/19 8.220.192.0/18 8.220.192.0/19 8.220.224.0/19 8.220.229.0/24 8.221.0.0/17 8.221.0.0/18 8.221.64.0/18 8.221.128.0/17 8.221.128.0/18 8.221.192.0/18 8.222.0.0/20 8.222.0.0/21 8.222.8.0/21 8.222.16.0/20 8.222.16.0/21 8.222.24.0/21 8.222.32.0/20 8.222.32.0/21 8.222.40.0/21 8.222.48.0/20 8.222.48.0/21 8.222.56.0/21 8.222.64.0/20 8.222.64.0/21 8.222.72.0/21 8.222.80.0/20 8.222.80.0/21 8.222.88.0/21 8.222.128.0/17 8.222.128.0/18 8.222.192.0/18 8.223.0.0/17 8.223.0.0/18 8.223.64.0/18 43.91.0.0/16 43.91.0.0/17 43.91.128.0/17 43.96.0.0/24 43.96.1.0/24 43.96.2.0/24 43.96.3.0/24 43.96.4.0/24 43.96.5.0/24 43.96.7.0/24 43.96.8.0/24 43.96.9.0/24 43.96.10.0/24 43.96.11.0/24 43.96.12.0/24 43.96.13.0/24 43.96.16.0/24 43.96.17.0/24 43.96.18.0/24 43.96.19.0/24 43.96.20.0/24 43.96.21.0/24 43.96.23.0/24 43.96.24.0/24 43.96.25.0/24 43.96.26.0/24 43.96.27.0/24 43.96.28.0/24 43.96.29.0/24 43.96.32.0/24 43.96.33.0/24 43.96.34.0/24 43.96.35.0/24 43.96.36.0/24 43.96.66.0/24 43.96.67.0/24 43.96.68.0/24 43.96.69.0/24 43.96.70.0/24 43.96.71.0/24 43.96.72.0/24 43.96.73.0/24 43.96.74.0/24 43.96.75.0/24 43.96.77.0/24 43.96.80.0/24 45.196.28.0/24 45.199.179.0/24 47.52.0.0/16 47.52.0.0/17 47.52.128.0/17 47.56.0.0/15 47.56.0.0/16 47.57.0.0/16 47.74.0.0/18 47.74.0.0/19 47.74.0.0/21 47.74.32.0/19 47.74.64.0/18 47.74.64.0/19 47.74.96.0/19 47.74.128.0/17 47.74.128.0/18 47.74.192.0/18 47.75.0.0/16 47.75.0.0/17 47.75.128.0/17 47.76.0.0/16 47.76.0.0/17 47.76.128.0/17 47.77.0.0/22 47.77.0.0/23 47.77.2.0/23 47.77.4.0/22 47.77.4.0/23 47.77.6.0/23 47.78.0.0/16 47.78.0.0/17 47.78.128.0/17 47.79.0.0/20 47.79.0.0/21 47.79.8.0/21 47.79.16.0/20 47.79.16.0/21 47.79.24.0/21 47.79.32.0/20 47.79.32.0/21 47.79.40.0/21 47.79.48.0/20 47.79.48.0/21 47.79.52.0/23 47.79.54.0/23 47.79.56.0/21 47.79.56.0/23 47.79.58.0/23 47.79.60.0/23 47.79.62.0/23 47.79.64.0/20 47.79.64.0/21 47.79.72.0/21 47.79.96.0/19 47.79.96.0/20 47.79.104.0/21 47.79.112.0/20 47.80.0.0/18 47.80.0.0/19 47.80.32.0/19 47.80.64.0/18 47.80.64.0/19 47.80.96.0/19 47.82.0.0/18 47.82.0.0/19 47.82.32.0/19 47.82.32.0/21 47.88.0.0/17 47.88.0.0/18 47.88.41.0/24 47.88.42.0/24 47.88.43.0/24 47.88.64.0/18 47.88.128.0/17 47.88.128.0/18 47.88.135.0/24 47.88.192.0/18 47.89.0.0/18 47.89.0.0/19 47.89.32.0/19 47.89.71.0/24 47.89.72.0/22 47.89.72.0/23 47.89.74.0/23 47.89.76.0/22 47.89.76.0/23 47.89.78.0/23 47.89.80.0/23 47.89.82.0/23 47.89.84.0/24 47.89.85.0/24 47.89.88.0/22 47.89.88.0/23 47.89.90.0/23 47.89.92.0/22 47.89.92.0/23 47.89.94.0/23 47.89.96.0/24 47.89.97.0/24 47.89.98.0/23 47.89.99.0/24 47.89.100.0/24 47.89.101.0/24 47.89.102.0/24 47.89.103.0/24 47.89.104.0/21 47.89.104.0/22 47.89.108.0/22 47.89.122.0/24 47.89.123.0/24 47.89.124.0/23 47.89.124.0/24 47.89.125.0/24 47.89.128.0/18 47.89.128.0/19 47.89.160.0/19 47.89.192.0/18 47.89.192.0/19 47.89.221.0/24 47.89.224.0/19 47.90.0.0/17 47.90.0.0/18 47.90.64.0/18 47.90.128.0/17 47.90.128.0/18 47.90.192.0/18 47.91.0.0/19 47.91.0.0/20 47.91.16.0/20 47.91.32.0/19 47.91.32.0/20 47.91.48.0/20 47.91.64.0/19 47.91.64.0/20 47.91.80.0/20 47.91.96.0/19 47.91.96.0/20 47.91.112.0/20 47.91.128.0/17 47.91.128.0/18 47.91.192.0/18 47.235.0.0/19 47.235.0.0/22 47.235.0.0/23 47.235.1.0/24 47.235.2.0/23 47.235.4.0/24 47.235.5.0/24 47.235.6.0/23 47.235.6.0/24 47.235.7.0/24 47.235.8.0/24 47.235.9.0/24 47.235.10.0/23 47.235.10.0/24 47.235.11.0/24 47.235.12.0/23 47.235.12.0/24 47.235.13.0/24 47.235.16.0/23 47.235.16.0/24 47.235.18.0/23 47.235.18.0/24 47.235.19.0/24 47.235.20.0/24 47.235.21.0/24 47.235.22.0/24 47.235.24.0/22 47.235.24.0/23 47.235.26.0/23 47.235.28.0/23 47.235.28.0/24 47.235.29.0/24 47.236.0.0/15 47.236.0.0/16 47.237.0.0/16 47.237.34.0/24 47.238.0.0/15 47.238.0.0/16 47.239.0.0/16 47.240.0.0/16 47.240.0.0/17 47.240.128.0/17 47.240.213.0/24 47.241.0.0/16 47.241.0.0/17 47.241.128.0/17 47.242.0.0/15 47.242.0.0/16 47.243.0.0/16 47.244.0.0/16 47.244.0.0/17 47.244.73.0/24 47.244.128.0/17 47.245.0.0/18 47.245.0.0/19 47.245.32.0/19 47.245.64.0/18 47.245.64.0/19 47.245.96.0/19 47.245.128.0/17 47.245.128.0/18 47.245.192.0/18 47.246.32.0/22 47.246.64.0/24 47.246.66.0/24 47.246.67.0/24 47.246.68.0/23 47.246.68.0/24 47.246.69.0/24 47.246.72.0/21 47.246.72.0/22 47.246.76.0/22 47.246.80.0/24 47.246.82.0/23 47.246.82.0/24 47.246.83.0/24 47.246.84.0/22 47.246.84.0/23 47.246.86.0/23 47.246.88.0/22 47.246.88.0/23 47.246.90.0/23 47.246.92.0/23 47.246.92.0/24 47.246.93.0/24 47.246.96.0/21 47.246.96.0/22 47.246.100.0/22 47.246.104.0/21 47.246.104.0/22 47.246.108.0/22 47.246.120.0/24 47.246.121.0/24 47.246.122.0/24 47.246.123.0/24 47.246.124.0/24 47.246.125.0/24 47.246.128.0/22 47.246.128.0/23 47.246.130.0/23 47.246.132.0/22 47.246.132.0/23 47.246.134.0/23 47.246.136.0/21 47.246.136.0/22 47.246.140.0/22 47.246.144.0/23 47.246.144.0/24 47.246.145.0/24 47.246.146.0/23 47.246.146.0/24 47.246.147.0/24 47.246.148.0/23 47.246.148.0/24 47.246.149.0/24 47.246.150.0/23 47.246.150.0/24 47.246.151.0/24 47.246.152.0/23 47.246.152.0/24 47.246.153.0/24 47.246.154.0/24 47.246.155.0/24 47.246.156.0/22 47.246.156.0/23 47.246.158.0/23 47.246.160.0/20 47.246.160.0/21 47.246.168.0/21 47.246.176.0/20 47.246.176.0/21 47.246.184.0/21 47.246.192.0/22 47.246.192.0/23 47.246.194.0/23 47.246.196.0/22 47.246.196.0/23 47.246.198.0/23 47.250.0.0/17 47.250.0.0/18 47.250.64.0/18 47.250.99.0/24 47.250.128.0/17 47.250.128.0/18 47.250.192.0/18 47.251.0.0/16 47.251.0.0/17 47.251.128.0/17 47.252.0.0/17 47.252.0.0/18 47.252.64.0/18 47.252.67.0/24 47.252.128.0/17 47.252.128.0/18 47.252.192.0/18 47.253.0.0/16 47.253.0.0/17 47.253.128.0/17 47.254.0.0/17 47.254.0.0/18 47.254.64.0/18 47.254.113.0/24 47.254.128.0/18 47.254.128.0/19 47.254.160.0/19 47.254.192.0/18 47.254.192.0/19 47.254.224.0/19 59.82.136.0/23 103.81.186.0/23 103.183.154.0/23 110.76.21.0/24 110.76.23.0/24 116.251.64.0/18 139.95.0.0/23 139.95.2.0/23 139.95.4.0/23 139.95.6.0/23 139.95.8.0/23 139.95.10.0/23 139.95.12.0/23 139.95.14.0/23 139.95.16.0/23 139.95.18.0/23 140.205.1.0/24 140.205.122.0/24 147.139.0.0/17 147.139.0.0/18 147.139.26.0/24 147.139.64.0/18 147.139.128.0/17 147.139.128.0/18 147.139.192.0/18 149.129.0.0/16 149.129.0.0/20 149.129.0.0/21 149.129.8.0/21 149.129.16.0/23 149.129.32.0/19 149.129.64.0/18 149.129.64.0/19 149.129.96.0/19 149.129.128.0/18 149.129.128.0/19 149.129.160.0/19 149.129.192.0/18 149.129.192.0/19 149.129.224.0/19 156.227.20.0/24 156.236.12.0/24 156.236.17.0/24 156.240.76.0/23 156.245.1.0/24 161.117.0.0/16 161.117.0.0/17 161.117.126.0/24 161.117.127.0/24 161.117.128.0/17 161.117.128.0/24 161.117.129.0/24 161.117.138.0/24 161.117.143.0/24 170.33.24.0/24 170.33.29.0/24 170.33.30.0/24 170.33.31.0/24 170.33.32.0/24 170.33.33.0/24 170.33.34.0/24 170.33.35.0/24 170.33.72.0/24 170.33.73.0/24 170.33.74.0/24 170.33.75.0/24 170.33.76.0/24 170.33.77.0/24 170.33.78.0/24 170.33.79.0/24 170.33.80.0/24 170.33.81.0/24 170.33.82.0/24 170.33.83.0/24 170.33.84.0/24 170.33.85.0/24 170.33.86.0/24 170.33.104.0/24 170.33.105.0/24 170.33.106.0/24 170.33.107.0/24 185.78.106.0/23 198.11.128.0/18 198.11.137.0/24 198.11.184.0/21 202.144.199.0/24 203.107.64.0/24 203.107.65.0/24 203.107.66.0/24 203.107.67.0/24 203.107.68.0/24 205.204.96.0/19 205.204.102.0/23 205.204.111.0/24 205.204.117.0/24 205.204.125.0/24 223.5.5.0/24 223.6.6.0/24" From 6860604c6a1c4f0a1ed120af5330744ff87179ae Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 29 May 2024 13:19:44 +0530 Subject: [PATCH 28/31] fix librarian --- privfrontends/configs/librarian/config.yml | 2 +- privfrontends/vars.yaml | 6 +----- 2 files changed, 2 insertions(+), 6 deletions(-) diff --git a/privfrontends/configs/librarian/config.yml b/privfrontends/configs/librarian/config.yml index 8b870f7..6f215de 100644 --- a/privfrontends/configs/librarian/config.yml +++ b/privfrontends/configs/librarian/config.yml @@ -23,7 +23,7 @@ ENABLE_LIVESTREAM: true # Set custom SponsorBlock URL (with https://github.com/mchangrh/sb-mirror or other) SPONSORBLOCK_URL: 'https://sponsor.ajay.app' # Advanced: Custom video streaming endpoint -VIDEO_STREAMING_URL: 'https://proxy.lbry.projectsegfau.lt/stream' +VIDEO_STREAMING_URL: '' # Rewrite links to other frontends. example: https://yt.domain.tld FRONTEND: youtube: 'https://invidious.projectsegfau.lt' diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index 483f58c..a748fe9 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -94,15 +94,11 @@ apps: docker_settings: services: - name: librarian - image: codeberg.org/librarian/librarian:latest + image: quay.io/pussthecatorg/librarian ports: - "3550:3550" mounts: - "{{configs_dir}}/librarian/config.yml:/app/config.yml" - - name: stream-proxy - image: codeberg.org/librarian/stream-proxy-ng:latest - ports: - - "3001:3001" redlib: needs_data_dir: false needs_configs_dir: false From 25df82eefa0becbfa34d397d0711e737adbc4539 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 29 May 2024 13:48:19 +0530 Subject: [PATCH 29/31] add shoelace frontend for threads --- privfrontends/configs/shoelace/shoelace.toml | 51 ++++++++++++++++++++ privfrontends/templates/Caddyfile.j2 | 6 +++ privfrontends/vars.yaml | 14 ++++++ 3 files changed, 71 insertions(+) create mode 100644 privfrontends/configs/shoelace/shoelace.toml diff --git a/privfrontends/configs/shoelace/shoelace.toml b/privfrontends/configs/shoelace/shoelace.toml new file mode 100644 index 0000000..e686a89 --- /dev/null +++ b/privfrontends/configs/shoelace/shoelace.toml @@ -0,0 +1,51 @@ +[server] +# Address to listen on +listen="0.0.0.0" +# Port to bind +port=8080 +# Instance URL. Needed for accurate proxied media locations in API +base_url="https://lace.projectsegfau.lt" + +[server.tls] +# Enable TLS support +enabled=false +# Path for certificate chain, in PEM format +cert="cert.pem" +# Path for key file, in PEM format +key="key.pem" + +[endpoint] +# Toggle the frontend +frontend=true +# Toggle the API +api=true + +[proxy] +# Proxy backend. Valid options are: +# - none: Disable the media proxy. Not recommended if frontend is enabled +# - internal: Stores values in memory. Destroys itself after stopping Shoelace. +# - redis: Stores values in a Redis server. Higher performance. Requires additional software +backend="internal" + +[proxy.redis] +# URI for Redis server. +# - TCP: redis://[][:@][:port][/] +# - Unix socket: redis+unix:///[?db=[&pass=][&user=]] +uri="redis://127.0.0.1/" + +[logging] +# Sets log level, for both stdout and logfiles. Valid levels are: +# - error: Shows errors presented during runtime +# - warn: Plus Alerts +# - info: Plus useful information, such as PID, requests, etc. (Recommended) +# - debug: Plus verbose actions. Not being used much. +# - trace: Plus low-level, extremely verbose info. Not used much. +level = "info" +# Whether to log the IP of an incoming connection +log_ips = false +# Whether to log what URLs are being assigned to each hash +log_cdn = false +# Store logs in a text file +store = false +# Where to store the logs in that case +output = "shoelace.log" diff --git a/privfrontends/templates/Caddyfile.j2 b/privfrontends/templates/Caddyfile.j2 index c413008..f6cda77 100644 --- a/privfrontends/templates/Caddyfile.j2 +++ b/privfrontends/templates/Caddyfile.j2 @@ -290,3 +290,9 @@ priviblur.{{ server_prefix }}.projectsegfau.lt priviblur.projectsegfau.lt pb.psf reverse_proxy :9084 import torloc priviblur } + +lace.{{ server_prefix }}.projectsegfau.lt lace.projectsegfau.lt l.psf.lt l.{{ server_prefix }}.psf.lt { + import def + reverse_proxy :9029 + import torloc lace +} diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index a748fe9..e7bce3a 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -256,6 +256,20 @@ apps: REDIS_REPLICATION_MODE: master mounts: - "{{data_dir}}/priviblur/redis-data:/data" + shoelace: + needs_configs_dir: true + needs_data_dir: true + docker_settings: + services: + - name: shoelace + image: nixgoat/shoelace + ports: + - "9029:8000" + mounts: + - "{{configs_dir}}/shoelace/shoelace.toml:/data/shoelace.toml" + - "{{data_dir}}/shoelace:/data" + environment: + SHOELACE_CONFIG=/data/shoelace.toml watchtower: needs_configs_dir: false needs_data_dir: false From 8ceac8ee96794ebc33c85493690d7b713401dcb7 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 29 May 2024 14:05:54 +0530 Subject: [PATCH 30/31] i cant do syntax --- privfrontends/vars.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index e7bce3a..6f38bc9 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -269,7 +269,7 @@ apps: - "{{configs_dir}}/shoelace/shoelace.toml:/data/shoelace.toml" - "{{data_dir}}/shoelace:/data" environment: - SHOELACE_CONFIG=/data/shoelace.toml + SHOELACE_CONFIG: /data/shoelace.toml watchtower: needs_configs_dir: false needs_data_dir: false From 9da571f047aafbc5e00fa26d5af2720648668925 Mon Sep 17 00:00:00 2001 From: Arya Kiran Date: Wed, 29 May 2024 16:08:22 +0530 Subject: [PATCH 31/31] fix port --- privfrontends/vars.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/privfrontends/vars.yaml b/privfrontends/vars.yaml index 6f38bc9..fac5ac8 100644 --- a/privfrontends/vars.yaml +++ b/privfrontends/vars.yaml @@ -264,7 +264,7 @@ apps: - name: shoelace image: nixgoat/shoelace ports: - - "9029:8000" + - "9029:8080" mounts: - "{{configs_dir}}/shoelace/shoelace.toml:/data/shoelace.toml" - "{{data_dir}}/shoelace:/data"