Create set

IPv4

ipset create block_network hash:net family inet

IPv6

ipset create block_network6 hash:net family inet6

Create firewall rules

IPv4

iptables -I INPUT -m set --match-set block_network src -j DROP

IPv6

ip6tables -I INPUT -m set --match-set block_network6 src -j DROP

Block network

IPv4

ipset add block_network 192.0.2.0/24

IPv6

ipset add block_network6 2001:db8::/32

Unblock network

IPv4

ipset del block_network 192.0.2.0/24

IPv6

ipset del block_network6 2001:db8::/32

Flush set

IPv4

ipset flush block_network

IPv6

ipset flush block_network6

Delete set

ipset destroy block_network
ipset destroy block_network6

Backup

ipset save block_network > block_network.ipset
ipset save block_network6 > block_network6.ipset

Restore

ipset restore < block_network.ipset
ipset restore < block_network6.ipset

Delete firewall

iptables -D INPUT -m set --match-set block_network src -j DROP
ip6tables -D INPUT -m set --match-set block_network6 src -j DROP

Create set#

IPv4#

IPv6#

Create firewall rules#

IPv4#

IPv6#

Block network#

IPv4#

IPv6#

Unblock network#

IPv4#

IPv6#

Flush set#

IPv4#

IPv6#

Delete set#

Backup#

Restore#

Delete firewall#

Create set

IPv4

IPv6

Create firewall rules

IPv4

IPv6

Block network

IPv4

IPv6

Unblock network

IPv4

IPv6

Flush set

IPv4

IPv6

Delete set

Backup

Restore

Delete firewall