-
Notifications
You must be signed in to change notification settings - Fork 1
/
pop-sources.sample.yaml
77 lines (75 loc) · 2.23 KB
/
pop-sources.sample.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
# manually maintained
sources:
active: [ tapir, rpz2, black_as_sin, white_and_shiny, localwhitelist ]
tapir:
name: dns-tapir # must have EXACTLY this name!
description: DNS TAPIR main intelligence feed
type: greylist
source: mqtt
bootstrap: [ 77.72.231.135:5454, 77.72.230.61 ] # www.axfr.net+nsb
bootstrapurl: https://%s/api/v1
format: tapir-mqtt-v1
rpztfc:
name: rpz.threat-feed.com
description: Commercial RPZ feed from threat-feed.com
type: greylist
source: xfr
zone: rpz.threat-feed.com
upstream: nsa.johani.org:53
format: rpz
rpz2:
name: rpz.axfr.net
description: Test RPZ feed from axfr.net
type: greylist
source: xfr
zone: rpz.axfr.net
upstream: nsa.johani.org:53
format: rpz
black_as_sin:
name: bas
description: "Locally maintained blacklisted domain names"
type: blacklist
source: file
# format: dawg
# filename: /var/tmp/dnstapir/black-as-sin.dawg
format: domains
filename: /var/tmp/dnstapir/black-as-sin.txt
white_and_shiny:
name: was
description: "Locally maintained whitelisted domain names"
type: whitelist
source: file
# format: dawg
# filename: /var/tmp/dnstapir/black-as-sin.dawg
format: domains
filename: /var/tmp/dnstapir/white-and-shiny.txt
localwhitelist:
name: local-whitelist
description: "Locally maintained whitelisted domain names"
type: whitelist
source: file
format: dawg # domains | dawg
filename: /var/tmp/dnstapir/well-known-domains.dawg
wellknowndomains:
name: wkdlist
description: "External list of 10M whitelisted domain names"
type: whitelist
source: http
format: csv # domains | dawg | csv
url: https://www.domcop.com/files/top
outfile: /var/tmp/dnstapir/well-known-domains.new.dawg
inactive_source:
name:
type: greylist
format: rpz
zone: rpz.zone
source: xfr
upstream: 10.1.2.3:53
tsig: ...
black_1:
type: blacklist
format: rpz
zone: rpz.zone
source: xfr
upstream: 10.1.2.3:53
tsig: ...