morr/ban_tor.sh

## ban_tor.sh
# create a new set for individual IP addresses
#sudo su
#ipset -N tor iphash
# get a list of Tor exit nodes that can access $YOUR_IP, skip the comments and read line by line
#wget -q "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=8.8.8.8" -O -|sed '/^#/d' |while read IP
#do
  # add each IP address to the new set, silencing the warnings for IPs that have already been added
#  ipset -q -A tor $IP
#done
# filter our new set in iptables
#sudo iptables -A INPUT -m set --match-set tor src -j DROP

sudo su
ipset -N tor2 iphash
wget -q "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=8.8.8.8" -O -|sed '/^#/d' |while read IP
do
  ipset -q -A tor2 $IP
done
# swap existing list to the new one
ipset swap tor tor2
ipset destroy tor2

sudo iptables -D INPUT -m set --match-set tor src -j DROP
sudo iptables -A INPUT -m set --match-set tor src -j DROP
	# create a new set for individual IP addresses
	#sudo su
	#ipset -N tor iphash
	# get a list of Tor exit nodes that can access $YOUR_IP, skip the comments and read line by line
	#wget -q "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=8.8.8.8" -O -\|sed '/^#/d' \|while read IP
	#do
	# add each IP address to the new set, silencing the warnings for IPs that have already been added
	# ipset -q -A tor $IP
	#done
	# filter our new set in iptables
	#sudo iptables -A INPUT -m set --match-set tor src -j DROP

	sudo su
	ipset -N tor2 iphash
	wget -q "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=8.8.8.8" -O -\|sed '/^#/d' \|while read IP
	do
	ipset -q -A tor2 $IP
	done
	# swap existing list to the new one
	ipset swap tor tor2
	ipset destroy tor2

	sudo iptables -D INPUT -m set --match-set tor src -j DROP
	sudo iptables -A INPUT -m set --match-set tor src -j DROP