systems/firehol-nftables
1
Fork 0
Code Activity Actions
Convert firehol lists to nftables sets
9 commits 1 branch 0 tags 45 KiB
Find a file
Exact
Jake Howard a227061655
All checks were successful
CI / test (push) Successful in 1m9s
Details
Remove counter 
Since these are ranges, the counter isn't especially useful. It's also more resources to track
2025-07-11 22:09:21 +01:00
.forgejo/workflows Remove variable expansion 2025-07-11 22:03:21 +01:00
.gitignore Bootstrap 2025-07-11 20:27:22 +01:00
example.nft Improve example config 2025-07-11 20:58:28 +01:00
firehol-nftables.py Remove counter 2025-07-11 22:09:21 +01:00
justfile Remove variable expansion 2025-07-11 22:03:21 +01:00
pyproject.toml Bootstrap 2025-07-11 20:27:22 +01:00
README.md Update README 2025-07-11 20:38:10 +01:00
uv.lock Bootstrap 2025-07-11 20:27:22 +01:00

README.md

firehol-nftables

Convert FireHOL IP lists into nftable sets.

Dependencies

  • Python (no dependencies needed outside of the standard library)

Usage

$ firehol-nftables.py <lists> --output <file.nft>

For example:

$ firehol-nftables.py firehol_level1 firehol_level2 firehol_level3 --output /etc/nftables.d/firehol.nft

This command does not reload nftables - that will need to be done separately. That means this script does not require root privileges to run.

The generated file can be loaded nftables, ideally using your main /etc/nftables.conf file. See example.nft for an example of loading it.