OpenWRT packages banIP and luci-app-banip?

We require the ability to block malicious ip addresses in order to protect our router / network. While we have been able to block individual IP addresses using the LUCI interface, it is labor intensive to add and remove them one at a time.

On the OpenWRT site, they list this package and corresponding LUCI add on - packages/README.md at master · openwrt/packages · GitHub

I tried to install it (opkg install banip and opkg install luci-app-banip) but it is not available.

How soon can we expect you will update things so this is available?

If you find a package that is not available, you can compile it yourself for now using the GL SDK from here:

It might be added in the future, in the meantime use that

We will soon put adguard in the router and it is much easier.

Will adguard let us ban large lists of IP addresses? (we don’t need the ability to block DNS…we use pihole for that)

I am not sure. But it is similar as PiHole.

Yes, you can see here:

Those tools have different purposes. Adguard want to protect users against ads by blocking domains and possibly ips.

banip protects the router’s web-interface (and ssh and other services) from being attacked by blocking IPs when login fails repeatedly.

Good news!

Right…banip and adguard appear to be two different things, with two separate purposes.

Maybe a use case will help:

We are provided (from DHS and other organizations) a list of ip addresses known to originate malicious attack traffic. We want to be able to cut and paste this list of ip addresses into our router, to ensure those ip address cannot communicate with our router or anyone on our network.

Will adguard accomplish this for us? If not, when will you have this capability (via banip or something else)?