From ArchWiki
Revision as of 23:17, 8 September 2011 by Thestinger (talk | contribs) (categorizing uncategorized page)
Jump to: navigation, search

MoBlock is a IP blocking daemon that uses iptables. MoBlock is also unofficial PeerGuardian Linux client that is very useful in filtering malicous peers on P2P networks.


First you need moblock package from AUR. If you want GUI, install the blockcontrol (dependency for GUI) and mobloquer (moblock GUI written using Qt).

Setting up


Open the /etc/moblock/config file with your favourite editor.

I recommend disabling filtering HTTP connections, so find WHITE_TCP_OUT="" and add http https to it. It will looks like: ] WHITE_TCP_OUT="http https"

In this file you can also customize what lists MoBlock will use for filtering, but is best to keep the defaults (MoBlock will filter about 99% bad connections, but will not be too paranoid).

If you are behind NAT, add this to config:


That will whitelist everything from to

Now run moblock-update to update the lists.

Note: If you get an error like this when doing a /etc/rc.d/moblock start:

iptables v1.4.8: iprange: Bad value for "--dst-range" option: ""
Try `iptables -h' or 'iptables --help' for more information.

Try using a range instead, so WHITE_IP_IN=""

Starting up

After configuration just run

# /etc/rc.d/moblock start

This is it! If you decide that moblock must run everytime you boot up, just add word moblock to your DAEMONS array in /etc/rc.conf


If you use MSN for instant messaging, you'll need to add port 1863 to the whitelist:

WHITE_TCP_OUT="http https 1863"