APIBAN banned my sip providers IP

dicko · June 11, 2023, 9:12pm

Apparently, in

palner/apiban/blob/master/clients/go/apiban-iptables/apiban-iptables-client.go

/*
 * Copyright (C) 2020-2021 Fred Posner (palner.com)
 *
 * This file is part of APIBAN.org.
 *
 * apiban-iptables-client is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version
 *
 * apiban-iptables-client is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 *
 */

This file has been truncated. show original

we have

// Add APIBAN chain to INPUT
err = ipt.Insert(“filter”, “INPUT”, 1, “-j”, chain)
if err != nil {
return “error”, fmt.Errorf(“failed to add APIBAN chain to INPUT chain: %w”, err)
}

It should probably be
.
.
// Append APIBAN chain to INPUT
.
.
err = ipt.Append(“filter”, “INPUT”, “-j”, chain)
return “error”, fmt.Errorf(“failed to append APIBAN chain to INPUT chain: %w”, err)

.
.

To play nice with other iptables rules and not be totally ‘authoritative’ , but that would depend on your current INPUT chain not having a DROP at the end