Block Tor exit nodes using iptables

on December 11th, 2015 by Hades | No Comments »

So this evening I had to manually block 22 Tor exit nodes because they were running a denial of service attack on my server. Not my idea of a fun start of the weekend.

It turns out that the Tor project has a list of exit nodes that can reach a certain IP-address. Well, I can automate that…


if [[ -z "$1" ]]; then
echo Usage: $0 ""
exit 1


for i in $(wget\?ip=$hostip -O- -q |\
grep -E '^[[:digit:]]+(\.[[:digit:]]+){3}$'); do
sudo iptables -A INPUT -s "$i" -j DROP

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.