The developers of the IPFire project, which develops a distribution for creating routers and firewalls, presented a series of blocking lists IPFire DBL (Domain Block List) to filter out access to unwanted domain names. The project is touted as a community-supported solution for managing content blocked on proprietary networks or on-premises systems.
Unlike most existing commercial and free DBLs that provide monolithic block lists for disparate content, the IPFire DBL offers a series of thematic lists that give you the ability to choose what type of content to block and what not to block. The lists are populated jointly and the user has the opportunity to take participation in their improvement. IPFire DBL also provides guarantees of legal purity – when aggregating data from other lists, only sources that clearly grant the right to redistribute are used.
The code that ensures the service is written in Python and is open under the GPLv3 license. The content of the lists is licensed under a CC BY-SA 4.0 (Creative Commons Attribution-ShareAlike) license, which permits use (including commercial), distribution and modification of the materials, provided the original author is credited, and distribution of derivative works under the same terms. A total of 12 lists have been generated, covering more than a million domain names.
Information is updated every hour and is available in several formats suitable for integration with various open and commercial DNS servers, proxies, ad blockers and traffic inspection systems. Supported integration with IDS/IPS Suricata, BIND, Unbound, PowerDNS, Knot DNS, Pi-hole, Squid, OPNsense, pfSense, Adblock Plus, AdGuard and uBlock Origin.
Export formats:
- RPZ (Response Policy Zones, analogous to DNSBL) for placing a DNS zone on DNS servers. Supports transfer and incremental zone updates between servers using AXFR/IXFR mechanisms.
- Squidguard format for filtering on proxy servers.
- Direct download in the form of a text list, allowing you to tailor solutions to your systems.
- Adblock Plus filter format for use with browser plugins for ad filtering.
- Rule format for IDS Suricata, which can be used for filtering DNS and HTTP requests, as well as SNI inspection in TLS.
Available block lists:
- Malware – domains associated with the distribution of malware or management of botnets.
- Phishing – phishing sites.
- Advertising – domains used for displaying advertising and tracking user movements.
- Pornography – domains with pornography and content for adults only.
- Gambling – online casinos and gambling.
- Games – gaming platforms and sites with games (can be used to block games).