iptables_NEW1

# Если чет не так может там понятней будет https://www.opennet.ru/man.shtml?topic=iptables&category=8&russian=0#lbBF

#chmod 0740 /etc/iptables.sh
#mcedit /etc/iptables.sh
# /etc/iptables.sh
#!/bin/sh
########Установка действия по умолчанию для стандартной цепочки:#################
/sbin/iptables -P INPUT DROP
#/sbin/iptables -P INPUT ACCEPT
#/sbin/iptables -P FORWARD DROP
/sbin/iptables -P FORWARD ACCEPT
/sbin/iptables -P OUTPUT ACCEPT

###* здесь мы сначала удаляем все правила (-F)#####################
/sbin/iptables -F
/sbin/iptables -F INPUT
/sbin/iptables -F OUTPUT
/sbin/iptables -F FORWARD
/sbin/iptables -F FORWARD -t mangle
/sbin/iptables -F POSTROUTING -t nat
/sbin/iptables -F PREROUTING -t nat
/sbin/iptables -F PREROUTING -t mangle
/sbin/iptables -F OUTPUT -t nat

###########Создание цепочки:####################
/sbin/iptables -N Country-Russia
#/sbin/iptables -N f2b-asterisk-udp
#/sbin/iptables -N f2b-ASTERISK-security
/sbin/iptables -N SIP-Operators
/sbin/iptables -N f2b-SSH

######## здесь мы сначала удаляем все правила chain (-F)#########
/sbin/iptables -F Country-Russia
#/sbin/iptables -F f2b-asterisk-udp
#/sbin/iptables -F f2b-ASTERISK-security
/sbin/iptables -F SIP-Operators
/sbin/iptables -F f2b-SSH

#########RETURN означает прекратить обход этой цепочки и возобновить выполнение следующего правила в предыдущей (вызывающей) цепочке. Если достигнут конец встроенной цепочки или соответствие правилу встроенной цепочки с целью RETURN, цель, заданная политикой цепочки, определяет судьбу пакета.###########
/sbin/iptables -A Country-Russia -j RETURN
#/sbin/iptables -A f2b-asterisk-udp -j RETURN
#/sbin/iptables -A f2b-ASTERISK-security -j RETURN
/sbin/iptables -A SIP-Operators -j RETURN
/sbin/iptables -A f2b-SSH -j RETURN

#################Добавить правило в конец списка:##############
/sbin/iptables -A INPUT -p all -j Country-Russia
#/sbin/iptables -A INPUT -p all -j f2b-asterisk-udp
#/sbin/iptables -A INPUT -p all -j f2b-ASTERISK-security
/sbin/iptables -A INPUT -p all -j SIP-Operators
/sbin/iptables -A INPUT -p all -j f2b-SSH

########### Black List ########################
/etc/rc.d/IP_Russia.sh
############ Сброс недействительных пакетов######################

/sbin/iptables -A INPUT -m state --state INVALID -j DROP
/sbin/iptables -A OUTPUT -m state --state INVALID -j DROP
/sbin/iptables -A FORWARD -m state --state INVALID -j DROP

##############icmp-host-prohibitedпросто сообщение об отклонении, с которым пакет отклоняется. Это означает, что ваш сервер уведомит отправителя о том, что пакет был отклонен этим сообщением.###################
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 4 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 5 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 9 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 10 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 11 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 12 -j REJECT --reject-with icmp-host-prohibited
/sbin/iptables -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT

###################Разрешаем loopback. В IPv4 это сеть с префиксом 127.0.0.0/8#######
/sbin/iptables -A INPUT -i lo -j ACCEPT
#/sbin/iptables -A INPUT -i enp0s3 -j ACCEPT

#####Пропускать пакеты с портом назначения равным одному из указанных. Краткая форма ключа --dports ####
#Это если бы вы пришли в магазин и сказали пароль 22 я с улицы (83.102.160.65-83.102.160.67)  аааа проходи ###
##################### И конкретно от какой сети ##############################
#/sbin/iptables -A INPUT -s 83.102.160.66  -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT #HOME
/sbin/iptables -I INPUT -m iprange --src-range  83.102.160.65-83.102.160.67 -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT #HOME

############ Адреса через тире дипазон если у вас ######################################
/sbin/iptables -I INPUT -m iprange --src-range  109.105.164.0-109.105.167.255 -p all -j ACCEPT #HOME

##############     -s означает Адрес источника, -p all все порты, ACCEPT разрешить ####################
/sbin/iptables -I INPUT -s 10.0.0.0/8 -p all -j ACCEPT #HOME
/sbin/iptables -I INPUT -s 176.58.0.0/15 -p all -j ACCEPT #tele2

############ Для удобства вы будите подключать SIP аккаунты и в этой цепочке указывать с каких IP разрешить  ###############
############ Здесь мы разрешаем принимать на порт udp 5060   ###############
############ -j, --jump цель Определяет цель правила; т.е., что делать, когда пакет попадает под условия правила. ACCEPT -разрешить ###############
/sbin/iptables -I SIP-Operators -s 37.139.38.0/24  -p udp --dport 5060 -j ACCEPT 		#zadarma
/sbin/iptables -I SIP-Operators -s 185.45.152.128/28   -p udp --dport 5060 -j ACCEPT 	#zadarma
/sbin/iptables -I SIP-Operators -s 185.45.152.160/27  -p udp --dport 5060 -j ACCEPT		#zadarma

#################Чтобы пропустить соединения, поступающие от этого адреса########################
#/sbin/iptables -A INPUT -s 109.105.164.0/24   -p all -j ACCEPT #
#/sbin/iptables -A INPUT -s 109.105.164.0   -p all -j ACCEPT #

################### Блокируем известные SIP сканеры ########################
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "friendly-scanner" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "sip-scan" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "sundayddr" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "iWar" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "sipsak" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "sipvicious" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "sipcli" --algo bm -j DROP
/sbin/iptables -A INPUT -p udp --dport 5060 -m string --string "VaxSIPUserAgent" --algo bm -j DROP

######  Имя интерфейса, через который должен быть получен обрабатываемый пакет только для пакетов входящих в цепочки- ############
############INPUT, FORWARD и PREROUTING узнать имя интерфейса ip addr show ############
###### здесь мы разрешаем входящий трафик на сетевую карту для этих портов ############
/sbin/iptables -A INPUT -i enp0s3  -p tcp -m tcp --dport 1701 -j ACCEPT
/sbin/iptables -A INPUT -i enp0s3  -p tcp -m tcp --dport 443 -j ACCEPT
/sbin/iptables -A INPUT -i enp0s3  -p tcp -m tcp --dport 22 -j ACCEPT
/sbin/iptables -A INPUT -i enp0s3  -p udp -m udp --dport 5060 -j ACCEPT
/sbin/iptables -A INPUT -i enp0s3  -p tcp -m tcp --dport 5060 -j ACCEPT
/sbin/iptables -A INPUT -i enp0s3  -p udp -m udp --dport 10000:50000 -j ACCEPT
/sbin/iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT

#################Если вам провайдер выдает внешний ip то вам понадобиться это правило ##################
#/sbin/iptables  -t nat -A PREROUTING -p udp -d 95.27.89.219 --dport 5060 -j DNAT --to-destination 10.10.50.16:5060


#################################################################################
#l2tp ipsec
#Для centos 8 действующий конфиг как настроить клиента
#https://github.com/hwdsl2/setup-ipsec-vpn/blob/f838fcfe12144835177563b54e97c1b9d7cfa032/docs/clients.md#linux-vpn-clients

#Для centos 8 действующий сервер
#http://www.admblog.ru/centos-vpn-server-setup-quick/
#################################################################################

#/sbin/iptables -A INPUT -p udp -m udp --dport 1701 -m policy --dir in --pol none -j DROP
#/sbin/iptables -A INPUT -m conntrack --ctstate INVALID -j DROP
#/sbin/iptables -A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
#/sbin/iptables -A INPUT -p udp -m multiport --dports 500,4500 -j ACCEPT
#/sbin/iptables -A INPUT -p udp -m udp --dport 1701 -m policy --dir in --pol ipsec -j ACCEPT
#/sbin/iptables -A INPUT -p udp -m udp --dport 1701 -j DROP
#/sbin/iptables -A FORWARD -m conntrack --ctstate INVALID -j DROP
#/sbin/iptables -A FORWARD -i enp0s3 -o ppp+ -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
#/sbin/iptables -A FORWARD -i ppp+ -o enp0s3 -j ACCEPT
#/sbin/iptables -A FORWARD -s 192.168.42.0/24 -d 192.168.42.0/24 -i ppp+ -o ppp+ -j ACCEPT
#/sbin/iptables -A FORWARD -d 192.168.43.0/24 -i enp0s3 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
#/sbin/iptables -A FORWARD -s 192.168.43.0/24 -o enp0s3 -j ACCEPT

/sbin/iptables -A FORWARD -j DROP
/sbin/iptables -A INPUT -j DROP


#service iptables save


##########################################################################################
##########################################################################################
#chmod 0740 /etc/rc.d/IP_Russia.sh
#mcedit /etc/rc.d/IP_Russia.sh

/sbin/iptables -A Country-Russia -p all -s	1.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	100.120.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	100.6.73.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	101.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	102.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	103.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	104.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	104.140.188.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	104.140.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	104.238.220.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	104.41.153.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	105.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	106.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	107.208.240.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	107.6.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	108.253.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	108.41.180.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	108.7.223.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.100.169.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.194.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.219.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.72.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.79.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.105.88.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.121.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.122.62.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.123.117.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.125.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.132.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.193.34.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.207.193.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.226.220.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.227.63.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.235.7.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.242.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.242.201.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.75.35.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.75.37.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	109.94.113.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	110.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	111.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	112.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	113.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	114.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	115.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	116.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	117.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	118.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	119.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	12.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	120.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	121.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	122.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	123.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	124.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	125.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	126.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	128.14.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	128.194.6.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	128.199.56.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	13.65.31.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	13.74.26.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	13.76.97.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	131.0.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	131.108.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	133.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.122.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.122.29.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.122.50.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.122.88.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.209.157.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.209.176.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.209.95.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	134.249.131.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	136.232.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	136.36.136.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	137.186.69.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	138.121.184.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	138.197.99.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	138.207.131.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	138.59.201.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.104.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.106.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.118.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.120.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.65.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.162.77.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.170.228.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.199.196.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.210.37.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.217.94.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.220.192.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.226.184.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	139.99.34.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	14.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	140.117.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	141.213.13.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	141.98.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	142.93.114.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	142.93.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	142.93.61.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	143.208.96.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	144.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	145.236.80.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	145.255.25.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	146.168.169.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	146.185.25.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	146.88.240.0/20	-j DROP
/sbin/iptables -A Country-Russia -p all -s	148.101.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	148.63.170.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	149.28.255.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	149.34.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	150.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	151.15.73.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	151.237.7.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	151.56.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	152.231.89.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	152.237.235.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	152.238.200.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	152.249.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	153.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	154.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	155.138.211.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	155.4.215.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	155.4.56.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	155.93.141.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	156.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	157.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	158.69.251.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	159.203.0.0/16	-j DROP
/sbin/iptables -A Country-Russia -p all -s	159.89.52.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	160.19.64.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	161.35.10.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	161.35.14.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	161.35.34.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.144.102.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.128.193	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.129.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.130.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.131.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.243.133.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.244.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	162.250.98.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	163.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	164.132.92.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	164.68.112.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	165.22.68.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	165.227.54.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	165.227.80.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	165.49.6.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.114.113.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.172.180.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.172.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.250.72.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.71.100.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.71.120.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.71.13.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	167.71.78.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.1.194.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.195.239.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.227.48.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.232.196.0/22	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.61.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	168.61.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	169.197.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.130.187.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.233.47.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.253.2.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.253.58.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.82.75.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.83.3.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	170.84.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	171.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	172.104.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	172.104.247.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	172.105.89.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	172.172.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	173.0.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	173.235.8.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	173.8.63.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	174.138.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	175.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.107.128.0/19	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.115.14.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.115.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.223.1.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.253.60.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	176.67.111.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	177.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.128.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.128.186.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.128.244.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.128.90.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.128.93.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.136.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.155.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.158.247.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.168.90.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.169.217.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.176.96.0/19	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.208.132.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.216.126.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.220.215.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.242.57.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.254.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.33.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.33.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.34.157.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.46.209.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.46.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.54.206.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.54.232.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.62.16.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.62.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.62.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.67.142.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.68.111.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.73.215.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	178.93.18.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	179.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	18.221.239.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	180.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	181.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	182.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	183.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	184.105.139.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	184.105.247.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.10.68.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.126.18.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.132.231.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.14.40.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.142.236.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.153.196.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.153.198.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.153.199.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.156.73.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.164.72.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.165.124.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.175.93.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.176.221.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.176.222.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.176.27.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.179.188.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.200.118.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.208.144.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.211.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.216.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.219.221.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.22.142.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.221.134.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.222.64.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.223.28.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.227.109.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.231.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.239.227.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.243.183.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.247.58.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.26.113.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.36.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.37.212.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.43.209.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.53.88.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.53.91.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	185.96.70.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	186.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	187.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.10.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.148.234.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.152.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.16.145.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.173.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.173.248.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.186.104.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.214.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.226.149.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.234.134.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.27.226.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	188.42.219.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	189.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	190.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	191.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.129.188.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.141.111.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.169.213.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.227.89.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.228.100.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.234.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.235.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.236.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.237.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.238.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.241.239.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.81.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	192.99.175.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.106.57.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.112.106.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.142.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.150.248.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.201.82.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.213.145.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.234.67.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.254.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.29.12.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.32.163.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	193.33.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.180.224.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.36.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.55.132.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.61.24.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.63.143.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	194.9.172.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.154.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.154.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.154.63.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.158.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.222.51.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.231.4.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.231.69.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.231.8.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.3.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	195.54.167.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.0.84.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.201.247.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.218.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.219.90.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.246.211.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	196.52.43.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	197.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	198.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	199.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	199.33.126.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	2.180.147.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	2.236.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	2.50.157.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	2.86.119.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	200.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	201.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	202.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	203.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	205.182.170.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	205.185.114.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	206.189.218.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	206.189.94.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	206.214.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	208.100.26.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	208.100.26.228	-j DROP
/sbin/iptables -A Country-Russia -p all -s	208.102.220.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	208.168.231.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	209.126.96.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	209.141.58.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	209.97.164.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	210.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	211.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.129.0.0/19	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.129.50.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.154.136.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.156.215.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.162.151.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.23.138.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.231.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.36.221.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.75.202.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.83.128.0/20	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.83.162.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	212.83.170.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.110.12.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.110.203.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.127.241.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.136.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.136.73.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.139.56.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.14.150.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.155.199.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.159.238.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.170.94.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.214.83.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.217.0.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.241.94.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.248.166.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.29.6.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.57.73.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.66.197.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.74.176.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	213.87.87.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	216.117.227.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	216.180.181.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	216.21.168.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	216.212.226.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	216.218.206.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	217.131.130.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	217.182.166.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	217.218.218.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	217.61.21.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	217.61.97.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	218.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	219.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	220.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	221.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	222.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	23.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.111.179.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.132.97.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.138.226.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.233.121.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.47.74.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.51.156.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	24.92.147.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.109.137.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.155.87.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.188.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.192.173.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.200.134.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.209.90.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.42.237.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.68.124.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.70.225.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.72.149.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.72.80.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.74.159.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.76.207.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.78.118.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	27.8.48.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	3.88.53.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	30.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.13.131.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.146.124.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.163.132.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.163.163.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.163.179.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.173.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.173.200.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.184.199.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.204.17.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.214.141.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	31.25.29.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	33.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	34.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	35.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	36.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.139.127.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.152.177.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.152.183.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.191.224.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.191.77.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.192.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.193.123.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.193.175.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.202.68.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.203.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.223.204.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.252.65.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.252.86.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.255.255.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.28.161.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.34.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.49.226.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.49.229.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.49.230.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.49.231.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.6.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.75.208.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.8.13.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	37.99.151.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.100.55.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.12.190.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.65.76.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.74.2.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.80.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.86.204.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	39.90.78.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	40.64.0.0/11	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.153.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.162.91.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.232.178.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.233.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.233.85.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.234.102.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.235.207.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.235.51.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.235.84.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.236.51.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.32.179.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.33.210.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.34.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.34.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.34.191.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.34.50.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.34.7.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.35.4.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.36.75.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.38.248.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.40.237.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.40.53.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.41.35.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.41.47.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.42.57.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.44.204.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.45.100.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.46.217.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.47.117.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.47.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.57.6.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.90.238.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.90.8.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	41.94.219.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.113.249.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.113.63.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.114.107.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.114.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.114.78.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.115.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.119.114.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.180.86.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.224.67.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.6.14.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.81.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	42.82.150.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	43.245.222.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	43.255.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	45.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	46.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	47.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	49.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	5.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	5.135.232.192/27	-j DROP
/sbin/iptables -A Country-Russia -p all -s	5.183.92.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.205.224.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.208.29.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.234.173.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.238.10.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.240.56.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.53.48.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.71.144.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	50.75.198.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	51.0.0.0/8	-j DROP
/sbin/iptables -A Country-Russia -p all -s	52.167.163.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	52.231.166.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	54.38.152.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	54.38.92.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.11.9.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.128.230.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.18.10.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.210.180.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.212.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.217.157.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.221.222.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.222.233.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.244.208.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.51.200.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	58.55.80.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.0.203.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.127.236.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.127.238.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.16.203.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.16.47.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.2.136.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.2.160.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.2.93.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.37.204.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	59.59.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.14.235.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.15.251.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.170.255.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.19.231.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.209.111.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.220.185.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	60.248.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.102.164.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.132.42.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.143.205.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.147.103.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.156.127.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.163.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.164.96.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.191.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.218.250.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.219.11.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.224.93.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.28.187.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.41.4.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	61.70.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.171.167.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.171.175.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.171.182.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.171.184.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.173.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.210.103.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.211.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.219.118.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.38.149.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.4.0.0/20	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.77.173.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	62.90.169.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	64.20.35.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	64.227.28.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	64.227.9.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	65.19.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	65.49.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	65.99.152.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	66.115.243.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	66.206.38.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	66.229.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	66.42.67.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	66.45.251.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	67.205.164.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	67.63.76.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	67.77.92.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	67.229.32.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	68.15.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	68.198.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	68.67.210.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	69.158.207.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	69.162.69.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	69.193.135.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	69.193.158.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	69.29.8.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.117.245.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.124.59.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.35.140.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.64.4.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.77.237.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	70.81.24.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	71.6.147.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	71.6.165.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	71.6.199.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	71.6.232.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	71.6.233.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	72.255.47.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	73.159.57.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	73.251.244.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	74.102.209.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	74.208.77.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	74.82.47.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	75.145.209.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	76.64.160.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	76.91.202.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.123.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.223.88.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.231.70.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.233.7.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.247.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.247.109.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.247.110.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.42.120.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.42.121.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.42.126.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.42.154.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.42.83.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	77.85.165.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.170.81.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.174.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.186.43.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.188.104.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.188.135.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.188.136.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.188.27.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.189.200.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.208.41.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.36.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.66.209.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.72.255.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	78.85.49.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.115.8.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.12.94.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.124.62.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.129.210.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.152.165.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.189.165.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.46.186.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.7.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	79.9.75.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.10.75.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.145.170.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.211.241.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.211.254.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.211.61.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.217.187.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.239.201.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.243.234.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.248.0.0/20	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.254.120.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.76.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.76.42.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.78.237.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.82.65.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.82.70.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	80.82.77.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.10.115.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.106.59.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.196.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.209.62.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.214.253.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.227.12.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.232.187.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	81.30.217.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.1.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.102.21.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.103.95.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.198.17.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.200.142.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.202.70.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.50.145.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.78.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.79.114.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.8.167.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	82.96.28.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.142.167.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.169.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.209.251.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.211.242.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.221.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.239.186.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.49.48.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.66.154.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.70.182.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.87.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.96.12.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	83.97.20.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.228.108.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.241.33.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.252.52.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.38.95.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.39.244.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	84.40.122.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.105.36.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.105.54.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.106.2.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.121.148.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.175.243.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.209.0.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.214.104.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.234.34.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.245.154.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.25.213.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.25.214.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.25.216.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.25.220.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.70.179.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.94.76.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	85.96.192.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.105.159.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.120.211.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.123.61.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.124.195.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.125.38.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.126.153.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.239.197.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.35.43.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	86.35.58.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.18.117.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.27.19.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.27.39.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.4.51.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.8.41.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	87.98.128.0/18	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.129.120.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.147.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.149.166.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.218.16.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.218.17.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.225.229.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.232.16.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.247.115.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.247.121.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.247.219.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.69.14.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	88.75.185.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.109.10.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.109.53.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.122.124.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.122.129.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.135.195.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.152.255.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.163.153.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.163.224.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.174.71.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.178.135.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.208.221.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.208.229.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.233.219.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.248.168.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.248.169.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.248.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	89.43.176.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	90.116.3.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	90.180.135.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	90.68.0.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	90.74.22.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.0.0.0/9	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.195.179.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.203.61.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.212.38.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.214.1.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.234.62.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.241.150.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	91.245.246.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.114.183.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.118.160.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.118.160.13	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.118.161.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.118.37.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.219.32.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.222.209.192/26	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.241.105.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.246.146.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.246.84.0/22	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.27.65.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.57.31.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.62.65.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.63.194.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.83.0.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.83.236.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	92.87.16.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.119.135.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.123.66.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.170.82.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.174.93.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.174.95.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.181.246.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.185.12.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.190.228.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.39.186.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.39.69.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.43.217.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.58.128.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	93.67.145.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.102.49.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.102.51.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.102.57.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.102.63.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.122.74.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.139.221.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.139.231.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.177.189.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.198.240.0/21	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.226.165.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.23.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.249.25.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.249.70.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.25.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.42.144.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	94.77.225.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.111.59.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.14.132.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.142.121.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.142.227.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.143.23.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.168.171.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.182.121.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.188.95.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.211.236.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.27.40.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.30.84.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.53.98.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	95.97.232.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	96.3.174.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	96.31.79.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	96.75.133.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	96.95.101.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	98.100.138.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	98.212.42.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	98.6.213.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	99.122.159.0/24	-j DROP
/sbin/iptables -A Country-Russia -p all -s	223.0.0.0/8	-j DROP


###############################################################################
###############################################################################
dnf install epel-release
dnf install fail2ban
systemctl enable --now fail2ban

To unblock IP address use:
iptables -D f2b-ASTERISK-security -s 67.229.32.210 -j DROP

################################################################################
cp /etc/fail2ban/jail.conf /etc/fail2ban/jail.local
mcedit /etc/fail2ban/jail.local

###############################################################################
###############################################################################
[ssh-iptables]
port =22
action   = sshd
logpath  = /var/log/secure
findtime    = 3600
maxretry    = 6
bantime     = 86400


[asterisk-iptables]
enabled = true
filter   = asterisk

port     = 5060,5061
action   = %(banaction)s[name=%(__name__)s-tcp, port="%(port)s", protocol="tcp", chain="%(chain)s", actname=%(banaction)s-tcp]
           %(banaction)s[name=%(__name__)s-udp, port="%(port)s", protocol="udp", chain="%(chain)s", actname=%(banaction)s-udp]
           %(mta)s-whois[name=%(__name__)s, dest="%(destemail)s"]
logpath  = /var/log/asterisk/full
maxretry = 100
bantime = 259200
ignoreip = 127.0.0.1/8


#################################################################################
mcedit /etc/fail2ban/jail.conf
#################################################################################
[ssh-iptables]
port =22
action   = sshd
logpath  = /var/log/secure
findtime    = 3600
maxretry    = 6
bantime     = 86400


[asterisk-iptables]
enabled = true
port     = 5060,5061
action   = %(banaction)s[name=%(__name__)s-tcp, port="%(port)s", protocol="tcp", chain="%(chain)s", actname=%(banaction)s-tcp]
           %(banaction)s[name=%(__name__)s-udp, port="%(port)s", protocol="udp", chain="%(chain)s", actname=%(banaction)s-udp]
           %(mta)s-whois[name=%(__name__)s, dest="%(destemail)s"]
logpath  = /var/log/asterisk/full
maxretry = 100
bantime = 259200
ignoreip = 127.0.0.1/8

#################################################################################
mcedit /etc/fail2ban/jail.d/sshd.conf
#################################################################################

[sshd]
enabled = true
bantime = 600
findtime = 650
maxretry = 5


#################################################################################


sed -i "s/;rotatestrategy = rotate/rotatestrategy=rotate /" /etc/asterisk/logger.conf
sed -i "s/;dateformat=%F %T/dateformat=%F %T /" /etc/asterisk/logger.conf
sed -i "s/;security => security/security => security /" /etc/asterisk/logger.conf
asterisk -rx "logger reload"
##############################################################################


############################################################################
# Fail2Ban configuration file
#
#
# $Revision: 250 $
#

#mcedit /etc/fail2ban/filter.d/asterisk.conf

# Fail2Ban filter for asterisk authentication failures
#

[INCLUDES]

# Read common prefixes. If any customizations available -- read them from
# common.local
before = common.conf

[Definition]

_daemon = asterisk

__pid_re = (?:\[\d+\])

# All Asterisk log messages begin like this:
log_prefix= (?:NOTICE|SECURITY)%(__pid_re)s:?(?:\[C-[\da-f]*\])? \S+:\d*( in \w+:)?

failregex = ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Registration from '[^']*' failed for '<HOST>(:\d+)?' - (Wrong password|Username/auth name mismatch|No matching pe
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Call from '[^']*' \(<HOST>:\d+\) to extension '\d+' rejected because extension not found in context 'default'\.$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Host <HOST> failed to authenticate as '[^']*'$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s No registration for peer '[^']*' \(from <HOST>\)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Host <HOST> failed MD5 authentication for '[^']*' \([^)]+\)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Failed to authenticate (user|device) [^@]+@<HOST>\S*$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s (?:handle_request_subscribe: )?Sending fake auth rejection for (device|user) \d*<sip:[^@]+@<HOST>>;tag=\w+\S*$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s SecurityEvent="(FailedACL|InvalidAccountID|ChallengeResponseFailed|InvalidPassword)",EventTV="[\d-]+",Severity="[
            ^(%(__prefix_line)s|\[\]\s*WARNING%(__pid_re)s:?(?:\[C-[\da-f]*\])? )Ext\. s: "Rejecting unknown SIP connection from <HOST>"$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Request from '.*' failed for '<HOST>(:[0-9]{1,5})?' (.*) - (No matching endpoint found)$
            ^(%(__prefix_line)s|\[\]\s*)%(log_prefix)s Request '.*' from '.*' failed for '<HOST>(:[0-9]{1,5})?' (.*) - (No matching endpoint found)$
ignoreregex =10.0.0.0/8


# Author: Xavier Devlamynck / Daniel Black
#
# General log format - main/logger.c:ast_log
# Address format - ast_sockaddr_stringify
#
# First regex: channels/chan_sip.c
#
# main/logger.c:ast_log_vsyslog - "in {functionname}:" only occurs in syslog

#######################################################################################
#######################################################################################
tail -f /var/log/asterisk/security
fail2ban-client status asterisk-iptables
systemctl restart fail2ban
iptables -nL --line-numbers
iptables -D f2b-ASTERISK-security 1
iptables -D f2b-sshd 1