| LinHES Forums http://forums.linhes.org/ |
|
| HOWTO: Install Moblock (PeerGuardian cousin) http://forums.linhes.org/viewtopic.php?f=11&t=17309 |
Page 1 of 1 |
| Author: | spalVl [ Thu Nov 22, 2007 10:09 pm ] |
| Post subject: | HOWTO: Install Moblock (PeerGuardian cousin) |
Just wanted to start a new thread on this rather than hijacking other one info was previously in. http://mysettopbox.tv/phpBB2/viewtopic.php?t=9922 Perhaps you are using Democracy or Miro on your KnoppMyth box as a torrent client to download CreativeCommons media and don't want evil corporations leeching off you because you value your privacy. Enter MoBlock, which uses IPTABLES rules to block IPs in a list file (/etc/moblock/guarding.p2p). I set this up on a R5F27 install and worked great. Howto: Code: pico /etc/apt/sources.list Append below 2 lines to the file and save/exit. Code: deb http://moblock-deb.sourceforge.net/debian etch main deb-src http://moblock-deb.sourceforge.net/debian etch main Update the GPG keys Code: gpg --keyserver wwwkeys.eu.pgp.net --recv 9072870B gpg --export --armor 9072870B | sudo apt-key add - Install moblock Code: apt-get update apt-get install moblock-nfq To manage blocked hosts Code: pico /etc/moblock/guarding.p2p
The included guarding.p2p file is pretty big and may end up blocking more that desired. The blocklist configuration is stored in /etc/moblock/blocklists.list http://www.bluetack.co.uk has a good explanation of what lists block what specific category. Moblock's configuation can be found in /etc/moblock/moblock.conf The configuration file is where IPs or companies can be white listed as well as TCP ports excluded from blocking. http://moblock-deb.sourceforge.net/ |
|
| Author: | graysky [ Sat Sep 20, 2008 3:19 pm ] |
| Post subject: | |
After following the instructions on the sourceforge page for moblock, my installation (using the sid repos) fails. I've also tried the etch repos with the same failure. The apt-get works and I'm asked to configure moblock which I do. It hangs after the lists have been downloaded though and refuses to start complaining about not being able to load kernel module xt_state. Log is below. Thoughts anyone? Here is my /etc/apr/source.list Code: deb http://moblock-deb.sourceforge.net/debian sid main deb-src http://moblock-deb.sourceforge.net/debian sid main #Debian repos deb http://ftp.debian.org unstable main contrib non-free deb-src http://ftp.debian.org unstable main contrib non-free Here is the output of my apt-get: Code: # apt-get install moblock Reading package lists... Done Building dependency tree... Done The following extra packages will be installed: libnetfilter-queue1 libnfnetlink0 Suggested packages: mobloquer Recommended packages: p7zip p7zip-full The following NEW packages will be installed: libnetfilter-queue1 libnfnetlink0 moblock 0 upgraded, 3 newly installed, 0 to remove and 872 not upgraded. Need to get 102kB of archives. After unpacking 508kB of additional disk space will be used. Do you want to continue [Y/n]? y Get:1 http://ftp.debian.org unstable/main libnfnetlink0 0.0.39-1 [12.3kB] Get:2 http://ftp.debian.org unstable/main libnetfilter-queue1 0.0.13-1 [6966B] Get:3 http://moblock-deb.sourceforge.net sid/main moblock 0.9~rc2-17 [83.2kB] Fetched 102kB in 0s (139kB/s) Preconfiguring packages ... Selecting previously deselected package libnfnetlink0. (Reading database ... 93317 files and directories currently installed.) Unpacking libnfnetlink0 (from .../libnfnetlink0_0.0.39-1_i386.deb) ... Selecting previously deselected package libnetfilter-queue1. Unpacking libnetfilter-queue1 (from .../libnetfilter-queue1_0.0.13-1_i386.deb) ... Selecting previously deselected package moblock. Unpacking moblock (from .../moblock_0.9~rc2-17_i386.deb) ... Setting up libnfnetlink0 (0.0.39-1) ... Setting up libnetfilter-queue1 (0.0.13-1) ... Setting up moblock (0.9~rc2-17) ... Reloading MoBlock: moblock ... failed. Trying an update instead to get missing blocklists, this may take several minutes. You may do in another terminal a "tail -f /var/log/moblock-control.log" to follow the update process. Pressing "control" + "c" stops this. The lists are saved to /var/spool/moblock/. Updating blocklists and reloading MoBlock: moblock. The following lists were updated: www.bluetack.co.uk/config/ads-trackers-and-bad-pr0n.gz of 2008-09-21 06:02 www.bluetack.co.uk/config/bogon.gz of 2008-09-21 06:02 www.bluetack.co.uk/config/dshield.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/fornonlancomputers.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/hijacked.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/iana-multicast.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/iana-private.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/iana-reserved.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/level1.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/level2.gz of 2008-09-21 06:02 www.bluetack.co.uk/config/Microsoft.gz of 2008-09-21 05:51 www.bluetack.co.uk/config/proxy.gz of 2008-09-21 05:57 www.bluetack.co.uk/config/templist.gz of 2008-09-14 06:35 Starting MoBlock: moblockinvoke-rc.d: initscript moblock, action "start" failed. dpkg: error processing moblock (--configure): subprocess post-installation script returned error exit status 170 Errors were encountered while processing: moblock E: Sub-process /usr/bin/dpkg returned an error code (1) Code: # cat /var/log/moblock-control.log 2008-09-20 17:05:52 EDT Begin: moblock-control reload Building blocklist^[[31m*^[[39;49m Error 9: www.bluetack.co.uk/config/ads-trackers-and-bad-pr0n.gz not available. Check the /etc/moblock/blocklists.list and$ 2008-09-20 17:05:52 EDT Begin: moblock-control update Updating blocklists ... Updating ads-trackers-and-bad-pr0n.gz. Updating bogon.gz. Updating dshield.gz. Updating fornonlancomputers.gz. Updating hijacked.gz. Updating iana-multicast.gz. Updating iana-private.gz. Updating iana-reserved.gz. Updating level1.gz. Updating level2.gz. Updating Microsoft.gz. Updating proxy.gz. Updating templist.gz. Blocklists updated. Building blocklist. Installing blocklist to /etc/moblock/guarding.p2p. MoBlock is not running, doing nothing. 2008-09-20 17:07:52 EDT End: moblock-control update 2008-09-20 17:07:53 EDT Begin: moblock-control start ^[[31m*^[[39;49m Error 170: Could not load kernel module xt_state, not starting MoBlock! 2008-09-20 17:07:54 EDT Begin: moblock-control reload Building blocklist. Installing blocklist to /etc/moblock/guarding.p2p. MoBlock is not running, doing nothing. 2008-09-20 17:07:55 EDT End: moblock-control reload 2008-09-20 17:07:55 EDT Begin: moblock-control start ^[[31m*^[[39;49m Error 170: Could not load kernel module xt_state, not starting MoBlock! Code: # moblock-control status
Current iptables rules (this may take awhile): Chain INPUT (policy ACCEPT 18385 packets, 19M bytes) pkts bytes target prot opt in out source destination Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 17971 packets, 1660K bytes) pkts bytes target prot opt in out source destination Please check if the above printed iptables rules are correct! moblock is not running. |
|
| Author: | graysky [ Sun Sep 21, 2008 5:53 pm ] |
| Post subject: | |
I posted this in the Phoenix Lab's forums/Linux area (here is the post). Long story short, to get Moblock to work on R5.5, netfilter kernel support needs to enabled, but there doesn't seem to be anything (module or otherwise). |
|
| Page 1 of 1 | All times are UTC - 6 hours |
| Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/ |
|