Copyright (c) by respective owners. All rights reserved. Released under license as described in the file LICENSE.txt
Application for monitoring Domains and IPs on RBLs. With blacklistmonitor you can monitor and document IP ranges and domain names for showing up on RBL servers.
- Supports All Major Blacklists. You can customize this list
- Monitor blocks of IPs in CIDR Format and your domains
- Web based reporting
- API for integration or access the database in mysql directly
- Email, SMS, and Twitter Alerts
- MySQL or MariaDB are needed for the database.
- Most likely you'll need your own DNS server as well. You can use Bind or even unbound. Bind is easier, unbound may be faster. You can attempt to use your ISPs name servers (see your /etc/resolve.conf). Some large ISPs name servers won't work and you'll need to run your own. Blacklistmonitor will not by default use your OS name servers.
- Apache or Nginx
- SMTP Mail server like postfix
apt-get -y install apache2
apt-get -y install mariadb-server mariadb-client mariadb-common
apt-get -y install php5 php5-mysqlnd php5-cli php5-curl
apt-get -y install bind9
update-rc.d bind9 defaults
update-rc.d apache2 defaults
update-rc.d mysql defaults
Go into the directory you want to install BlacklistMonitor into and clone the git repo. Usually this would be a web server directory like /var/www/html/. The rest of the commands below assume you're using this dir and the default config files do as well.
cd /var/www/html/
git clone git://github.com/mikerlynn/blacklistmonitor.git
mysql -p < /var/www/html/blacklistmonitor/setup/blacklistmonitor.sql
cp /var/www/html/blacklistmonitor/setup/blacklistmonitor-apache.conf /etc/apache2/sites-enabled/
cp /var/www/html/blacklistmonitor/setup/blacklistmonitor.cfg /etc/
After you've copied the config file you need to edit it to customize it for your setup here: /etc/blacklistmonitor.cfg
Don't even try to use google or opendns public DNS servers. Many RBLs block these from queries.
Add the contents of this file into cron
cat /var/www/html/blacklistmonitor/setup/blacklistmonitor.cron
edit crontab
crontab -e
cp /var/www/html/blacklistmonitor/setup/blacklistmonitor.conf /etc/init/
start blacklistmonitor
stop blacklistmonitor
restart blacklistmonitor
The default username and password to the portal is admin/pa55w0rd It's recommended to change both. Especially if you're installing this on a public network.
dpkg-reconfigure tzdata
Then edit your the value for date.timezone in /etc/php5/apache2/php.ini
Watch your log for issues/performance
tail -f /var/log/blacklistmonitor.log