IPTables command to block attempted logins to our office server, mostly out of China. These commands don't attempt to isolate single IPs, they just ban the entire subnet.

gistfile1.sh

iptables -I FORWARD -s 89.248.167.139 -j DROP
iptables -I FORWARD -s 112.33.0.0/16 -j DROP
iptables -I FORWARD -s 113.194.0.0/16 -j DROP
iptables -I FORWARD -s 113.195.0.0/16 -j DROP
iptables -I FORWARD -s 115.230.0.0/16 -j DROP
iptables -I FORWARD -s 115.231.0.0/16 -j DROP
iptables -I FORWARD -s 115.239.0.0/16 -j DROP
iptables -I FORWARD -s 117.21.0.0/16 -j DROP
iptables -I FORWARD -s 117.25.0.0/16 -j DROP
iptables -I FORWARD -s 218.25.0.0/16 -j DROP
iptables -I FORWARD -s 218.65.0.0/16 -j DROP
iptables -I FORWARD -s 218.87.0.0/16 -j DROP
iptables -I FORWARD -s 221.229.0.0/16 -j DROP
iptables -I FORWARD -s 222.187.0.0/16 -j DROP
iptables -I FORWARD -s 223.5.0.0/16 -j DROP
iptables -I FORWARD -s 43.255.0.0/16 -j DROP
iptables -I FORWARD -s 58.211.0.0/16 -j DROP
iptables -I FORWARD -s 58.218.0.0/16 -j DROP
iptables -I FORWARD -s 59.174.0.0/16 -j DROP
iptables -I FORWARD -s 59.175.0.0/16 -j DROP
iptables -I FORWARD -s 59.47.0.0/16 -j DROP
iptables -I FORWARD -s 61.160.0.0/16 -j DROP
iptables -I FORWARD -s 61.174.0.0/16 -j DROP