PeerGuardian BlockList Filter for HG

From NAS-Central Buffalo - The Linkstation Wiki
Revision as of 23:14, 21 April 2007 by Bv1k1ng (Talk)

Jump to: navigation, search

Contents

Moblock for Silver KuroboxHG

Moblock is the official Linux Peerguardian client. It load peerguardian file ( .p2p, .p2b, .dat) into iptables filter.

Installation

Requiered

Install Kernel Update

Dowload new kernel ( working only for kuroboxhg ). Put the archive on the root directory and untar

tar xvf kernel-2.6.18-mh3_kurobox_hg-20060929.tar.gz

Edit /etc/init.d/bootnewos for change the kernel. At the underlast line :

 /sbin/insmod /boot/loader.o kernel=/boot/vmlinux.bin

Reboot, the fist line in your shell should now be :

Linux (none) 2.6.18-mh3_kurobox_hg #1 Tue Sep 26 16:19:42 CEST 2006 ppc unknown unknown GNU/Linux

Install Library

Extract and compile libnfnetlink

bzip2 -d libnfnetlink-0.0.16.tar.bz2
tar xvf libnfnetlink-0.0.16.tar
cd libnfnetlink-0.0.16
./configure
make
make install

Extract and compile libnetfilter_queue

bzip2 -d libnetfilter_queue-0.0.12.tar.bz2
tar xvf libnetfilter_queue-0.0.12.tar
cd libnetfilter_queue-0.0.12
./configure
make
make install

Update library link

ldconfig


You may have to tell ldconfig where to look for the library files (if you get errors about not finding "libnetfilter" or other libraries when you run moblock. If so, then use

ldconfig /usr/local/lib

Install Moblock

Extact and compile Moblock. You must before edit the makefile for remove arch information :

tar xvf  MoBlock-0.8-i586.tar
cd Moblock-0.8
vi Makefile

remove :

 -march=i586 -mtune=i686

now we can compile

make
make install

Use

Moblock only filters packet that are queued with the NQUEUE interface. See the Moblock readme for more information. We will use Moblock default startup script.

Just copy MoBlock-nfq.sh to /usr/bin

cp Moblock-nfq.sh /usr/bin

Edit the script for the moblock binary path, the blocklist path and the log path.

vi /usr/bin/Moblock-nfq.sh
# Here you can change block list and log files
moblock -p /etc/guarding.p2p /var/log/moblock.log

Now just run

Moblock-nfq.sh &

Moblock is now operational :

  • To stop it:
kill -TERM <MoBlockPid>
  • For update log/stats
kill -USR1 <MoBlockPid>	# write stats to logfile
kill -USR2 <MoBlockPid>      # write stats to /var/log/MoBlock.stats
  • Reload the list
kill -HUP <MoBlockPid>	# reloads blocklist and resets stats



You can also use this script to download new blocklists (borrowed from the Ubuntu x86 moblock package). Maybe run it as a cron job?

Thx

To Sylver, for his work and his help :)