First commit

2025-05-31 15:48:14 +00:00
commit 8bec552adc
7 changed files with 190 additions and 0 deletions
--- a/update-blocklist.sh
+++ b/update-blocklist.sh
@@ -0,0 +1,47 @@
+#!/bin/bash
+
+set -e
+
+ADGUARD_YAML="/adguard/AdGuardHome.yaml"
+TMP_YAML="/tmp/AdGuardHome.yaml"
+MANUAL_IPS_FILE="/adguard/manually_blocked_ips.conf"
+CIDR_BASE_URL="https://raw.githubusercontent.com/vulnebify/cidre/main/output/cidr/ipv4"
+COUNTRIES=${BLOCK_COUNTRIES:-""}
+DOCKER_API_URL=${DOCKER_API_URL:-"http://docker-socket-proxy:2375"}
+
+if [ -z "$COUNTRIES" ]; then
+  echo "No countries specified in BLOCK_COUNTRIES."
+  exit 1
+fi
+
+mkdir -p /tmp/cidr
+> /tmp/cidr/all.txt
+
+IFS=',' read -ra CODES <<< "$COUNTRIES"
+for CODE in "${CODES[@]}"; do
+  echo "Downloading CIDR list for $CODE..."
+  curl -sf "$CIDR_BASE_URL/${CODE^^}.txt" -o "/tmp/cidr/${CODE}.txt" || continue
+  cat "/tmp/cidr/${CODE}.txt" >> /tmp/cidr/all.txt
+done
+
+if [ -f "$MANUAL_IPS_FILE" ]; then
+  echo "Validating and adding manually blocked IPs from $MANUAL_IPS_FILE..."
+  grep -E '^([0-9]{1,3}\.){3}[0-9]{1,3}(/[0-9]{1,2})?$' "$MANUAL_IPS_FILE" >> /tmp/cidr/all.txt
+fi
+
+IPS_FORMATTED=$(sed 's/^/    - /' /tmp/cidr/all.txt)
+
+awk -v ips="$IPS_FORMATTED" '
+BEGIN { inside=0 }
+/^  disallowed_clients:/ { print; inside=1; next }
+/^  [^ ]/ && inside==1 { print ips; inside=0 }
+{ if (!inside) print }
+END { if (inside==1) print ips }
+' "$ADGUARD_YAML" > "$TMP_YAML"
+
+mv "$TMP_YAML" "$ADGUARD_YAML"
+
+echo "Restarting adguard-home container..."
+curl -s -X POST "$DOCKER_API_URL/containers/adguard-home/restart" -o /dev/null
+
+echo "Done."