nftban

package module
v1.75.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 4, 2026 License: MPL-2.0 Imports: 0 Imported by: 0

README

NFTBan

Linux Intrusion Prevention System & nftables Firewall Manager

Version Go Status FHS Compliant

CI/CD Status

Shell Quality Go Quality Architecture Docs Build Packages Release Docker ShellCheck

Security & Supply Chain

SLSA 3 SBOM OpenSSF Scorecard OpenSSF Best Practices CodeQL Semgrep OSV-Scanner Trivy gitleaks Fuzz Testing Dependency Review

2026 OSSRA Compliance

OSSRA Remediation License Compliance Dependency Health

Security Hardening (2026 OSSRA Compliant)

This project implements a Zero-Trust CI/CD pipeline designed for the modern threat landscape:

Control Protection
SLSA Level 3 Cryptographic provenance - every binary proves its source
License Enforcement Blocks GPL/copyleft via go-licenses - prevents AI hallucinations
Dependency Freshness Libyear metrics flag "zombie" components >2 years old
URL Validation Lychee catches hallucinated/hijacked documentation links
Secret Scanning Gitleaks + GitGuardian prevent credential leaks
Supply Chain All GitHub Actions SHA-pinned to prevent hijacking
Behavioral Analysis Socket.dev detects typosquatting and malicious packages

See SECURITY.md for vulnerability reporting and supported versions.

NFTBan is an open-source Linux Intrusion Prevention System (IPS) and firewall manager built on nftables, designed to integrate cleanly with modern Linux security stacks.

It provides automated threat detection and response using native nftables for kernel-level enforcement, with Polkit-based privilege separation for secure operation without full root access.

Go Module Notice

NFTBan is a system-level firewall product, not a general-purpose Go library.

While this repository is a Go module and appears on pkg.go.dev, it is not designed or supported for use as an embeddable SDK. The Go packages exist to implement the NFTBan daemon, CLI, and internal tooling.

Supported Public Packages
Package Purpose
pkg/ipc IPC client for communicating with the NFTBan daemon
pkg/version Version information
For Integration with NFTBan
  • CLI: nftban ban, nftban unban, nftban status
  • Go IPC client: pkg/ipc — the supported public Go package
  • HTTP API: http://127.0.0.1:9580/api/ (when daemon is running)

All packages under internal/ are implementation details and may change without notice between releases.

BETA | Tested on 5 lab servers. Community feedback needed from diverse environments. Report issues here.

Quick Install

Tier 0 — Primary Platforms
Ubuntu 24.04 LTS (Noble)
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-ubuntu24.04-amd64.deb
sudo apt update && sudo apt install -y ./nftban-ubuntu24.04-amd64.deb && sudo nftban enable
Debian 12 (Bookworm)
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-debian12-amd64.deb
sudo apt update && sudo apt install -y ./nftban-debian12-amd64.deb && sudo nftban enable
Rocky / AlmaLinux / RHEL 9
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-el9-x86_64.rpm
sudo dnf install -y ./nftban-el9-x86_64.rpm && sudo nftban enable
Tier 1 — Future Platforms
Debian 13 (Trixie)
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-debian13-amd64.deb
sudo apt update && sudo apt install -y ./nftban-debian13-amd64.deb && sudo nftban enable
Rocky / AlmaLinux / RHEL 10
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-el10-x86_64.rpm
sudo dnf install -y ./nftban-el10-x86_64.rpm && sudo nftban enable
Tier 2 — Legacy Platforms
Ubuntu 22.04 LTS (Jammy)
wget https://github.com/itcmsgr/nftban/releases/latest/download/nftban-ubuntu22.04-amd64.deb
sudo apt update && sudo apt install -y ./nftban-ubuntu22.04-amd64.deb && sudo nftban enable
From Source
git clone https://github.com/itcmsgr/nftban.git && cd nftban
sudo ./install.sh cli    # CLI-only (~50MB RAM)
# or
sudo ./install.sh gui    # Full with Web GUI (~200MB RAM)

Available Packages

RPM Packages (EL Family)
Tier Distribution Version Package
0 Rocky / Alma / RHEL / CentOS Stream 9 nftban-el9-x86_64.rpm
1 Rocky / Alma / RHEL / CentOS Stream 10 nftban-el10-x86_64.rpm
DEB Packages (Ubuntu + Debian)
Tier Distribution Version Package
0 Ubuntu 24.04 (Noble) nftban-ubuntu24.04-amd64.deb
0 Debian 12 (Bookworm) nftban-debian12-amd64.deb
1 Debian 13 (Trixie) nftban-debian13-amd64.deb
2 Ubuntu 22.04 (Jammy) nftban-ubuntu22.04-amd64.deb

Packages are distro-specific and FHS compliant. Use the package matching your exact distribution version. See Supported Platforms for the full platform contract.

Features

Feature Description
Threat Intelligence Feeds Automatic blocking from Spamhaus, AbuseIPDB, Firehol
Geographic Blocking Block or allow traffic by country code
Login Monitoring Detects SSH brute-force and suspicious authentication patterns
Port Scan Detection Automatic detection and blocking of reconnaissance
DDoS Protection Rate limiting, SYN flood protection, connection limits
HTTP Bot Guard Automated crawler detection with kernel-native suspect marking
DNS Tunnel Suspicion Advisory-only DNS tunnel detection with 5 signals (v1.30.0)
Suricata IDS Integration Optional deep packet inspection
Prometheus-Compatible Metrics Observability endpoint for monitoring stacks
Zabbix Integration Template-based Zabbix integration
Portal (pro.nftban.com) Centralized metrics aggregation and fleet management
Export Connectors Config templates for Elasticsearch, Kafka, syslog
Whitelist Safety Tests Protected whitelists with automated safety validation

Quick Start

# Verify installation
nftban version
nftban health summary

# Enable protection modules
nftban login enable      # SSH login monitoring
nftban feeds enable      # Threat intelligence feeds
nftban portscan enable   # Port scan detection

# Optional: Suricata IDS integration
nftban suricata install  # Install Suricata IDS
nftban suricata enable   # Enable with weekly rule updates

# Common operations
nftban ban 1.2.3.4       # Block IP
nftban unban 1.2.3.4     # Remove ban
nftban search 1.2.3.4    # Search across all sets
nftban firewall reload   # Atomic reload

# Check status
nftban status

CLI Overview

System & Health
nftban status          # System overview
nftban health          # Diagnostics with auto-heal
nftban validate        # Firewall structure validation
nftban services        # Systemd services status
nftban config validate # Validate config against schema
IP Management
nftban ban <IP>        # Ban IP (with optional timeout)
nftban unban <IP>      # Remove ban
nftban search <IP>     # Search across all sets
nftban whitelist add   # Add to whitelist
Protection Modules
nftban login status    # SSH login monitoring
nftban feeds list      # Threat feed status
nftban geoban list     # Geographic blocking
nftban portscan status # Port scan detection
nftban ddos status     # DDoS protection
nftban botguard status # HTTP bot guard (v1.20.0)
nftban tunnel status   # DNS tunnel suspicion (v1.30.0)
DNS Tunnel Suspicion (v1.30.0)
nftban tunnel enable       # Enable monitoring (disabled by default)
nftban tunnel status       # Show status and summary
nftban tunnel scan         # Run scan now
nftban tunnel top          # Show top suspects by score
nftban tunnel explain IP   # Signal breakdown for an IP
nftban tunnel config       # Show configuration

Advisory-only — the tunnel module scores DNS traffic for tunnel indicators but never bans or blocks. Enforcement is planned for a future release.

See CLI Commands Reference for complete documentation.

Architecture

ip nftban {                  # IPv4 rules
    set whitelist_ipv4 {...}   # Protected IPs (never blocked)
    set blacklist_ipv4 {...}   # Unified blocklist (all sources)
    set tcp_ports_in {...}     # Inbound TCP ports
    set udp_ports_in {...}     # Inbound UDP ports
    chain input {...}
    chain forward {...}
}

ip6 nftban {                 # IPv6 rules
    set whitelist_ipv6 {...}   # Protected IPs (never blocked)
    set blacklist_ipv6 {...}   # Unified blocklist (all sources)
    chain input {...}
    chain forward {...}
}
Components
Component Type Description
nftban Bash CLI Main command-line interface (76 commands)
nftband Go daemon Backend daemon for feeds, login monitoring, IPC
nftban-ui Go binary Web interface server
How NFTBan Works

NFTBan operates as a CLI-driven firewall management system with a Go daemon backend:

User/Timer → CLI (Bash) → IPC Socket → Daemon (Go) → nftables (kernel)
                ↓                           ↓
          nft commands              ban/unban execution
          schema rebuild            login monitoring
          module management         feed processing
  1. CLI (nftban) issues commands — ban, unban, enable modules, rebuild firewall
  2. Daemon (nftband) handles long-running tasks — feed updates, login monitoring, IPC
  3. nftables kernel enforces all rules — sets, chains, counters are the enforcement boundary
  4. Atomic rebuild validates schema in a temp namespace before applying to production

The CLI communicates with the daemon via a Unix socket (/run/nftban/nftband.sock) authenticated with SO_PEERCRED. nftables rules are applied using transaction-based atomic operations — all rules load or none do.

CLI output is a report, not proof of enforcement. Kernel state is verified with nft list set commands.

Requirements

  • Linux: Rocky/Alma/RHEL 9-10, CentOS Stream 9-10, Ubuntu 22.04+, Debian 12+
  • nftables: 1.0+ (native backend)
  • Bash: 4.4+
  • systemd: 252+ (sysusers.d, tmpfiles.d support)
  • jq: JSON processor (auto-installed)
  • yq: YAML processor (auto-installed)
  • Go 1.24+: For building from source (optional)

Supported Platforms

NFTBan uses a tiered support model. See the full platform contract for details.

Tier 0 — Primary (CI-Required)
Family Platform Kernel nftables
DEB Ubuntu 24.04 LTS 6.8 1.0
DEB Debian 12 6.1 1.0
RPM Rocky Linux 9.x 5.14 1.0
Tier 1 — Future (Planned)
  • Rocky Linux 10.x / AlmaLinux 10.x / RHEL 10
  • Debian 13 (Trixie)
  • Ubuntu 26.04 LTS
Tier 2 — Legacy (Best-Effort)
  • Rocky/RHEL 8.x, Ubuntu 22.04, Debian 11

Development

NFTBan development uses AI tools for code generation and review. All code is human-reviewed and version-controlled.

Tool Use
ChatGPT (OpenAI) Architecture planning
Claude (Anthropic) Implementation, testing, review

License

NFTBan Core is licensed under the Mozilla Public License 2.0 (MPL-2.0).

Copyright (c) 2024-2026 NFTBan Project / Antonios Voulvoulis

What MPL-2.0 Means

MPL-2.0 is a file-level copyleft license:

  • You may use, modify, and distribute NFTBan freely
  • If you modify an MPL-licensed file, the modified file must remain under MPL-2.0 and be made available in source form
  • You may combine MPL-licensed files with files under other licenses (including proprietary) in the same project — only the MPL files carry the copyleft obligation
  • You do not need to open-source your own separate modules, integrations, or applications that use NFTBan

This means NFTBan can be integrated into proprietary infrastructure without requiring disclosure of your own code, as long as modifications to NFTBan's own files remain open.

See LICENSE for the full license text.

Architecture Boundary
Layer License Scope
Core engine MPL-2.0 nftables schema, CLI, daemon, modules, detection, health, CI
Pro portal Separate commercial license pro.nftban.com, fleet management, telemetry aggregation
Documentation & brand All rights reserved Logos, brand assets, marketing materials

The Core and Pro layers communicate via defined interfaces (CLI, IPC socket, HTTP API). They are architecturally separate.

Trademark

"NFTBan" is a trademark of the NFTBAN Project / Antonios Voulvoulis. The MPL-2.0 license grants rights to the code, not to the NFTBan name, logo, or brand. Forks must use a different name and branding. See TRADEMARK.md for the full policy.

Security & Supply Chain

NFTBan follows defense-in-depth security practices with 12 automated security tools across our CI/CD pipeline.

Security Certifications & Compliance
Certification Status Badge
OpenSSF Scorecard 7+ / 10 OpenSSF Scorecard
OpenSSF Best Practices Passing CII Best Practices
SLSA Level 3 Provenance SLSA 3
SBOM Every Release SPDX-JSON format
Automated Security Pipeline
CategoryToolPurposeFrequency
SASTCodeQLSemantic code analysis for GoEvery PR + Push
SemgrepPattern-based security rules (Go + Shell)Every PR + Push
gosecGo-specific security lintingEvery PR + Push
ShellCheckShell script security analysisEvery PR + Push
SCAgovulncheckGo module vulnerability scanningEvery PR + Push
OSV-ScannerGoogle OSV database scanningEvery PR + Weekly
TrivyContainer & dependency CVE scanningEvery PR + Push
SecretsgitleaksSecret detection in commitsEvery PR + Push
GitHub Secret ScanningKnown secret pattern detectionContinuous
Supply ChainSLSA ProvenanceCryptographic build attestationEvery Release
Dependency ReviewPR-level dependency diff analysisEvery PR
Fuzzinggo-fuzzAutomated fuzz testingNightly
Supply Chain Security
Source → Build → Attest → Release → Verify
   ↓       ↓        ↓         ↓        ↓
  Git   Hermetic  SLSA L3   SBOM    sigstore
  • SLSA Level 3: Hermetic builds with non-forgeable provenance
  • SBOM: Full Software Bill of Materials (SPDX-JSON) for every release
  • Signed Releases: GPG-signed tags and artifacts
  • Pinned Dependencies: All GitHub Actions pinned to SHAs
Security Dashboards
Dashboard Description
Security Overview All security features
Code Scanning SAST results (CodeQL, Semgrep, gosec, ShellCheck)
Dependabot Dependency CVE alerts
Secret Scanning Exposed credential detection
OpenSSF Scorecard Security health score (7+/10)
Workflow Status CI/CD pipeline status
Vulnerability Disclosure

We follow coordinated disclosure with a 90-day fix window. Report vulnerabilities to:

See SECURITY.md for complete security policy, threat model, and architecture.

Documentation

Getting Started
Architecture & Security
Integration
Community

NFTBan — Linux IPS & nftables Firewall Manager
nftban.com | Report Issue | Discussions

Documentation

Overview

Package nftban is a system-level nftables IPS firewall.

NFTBan is a production firewall product consisting of a daemon (nftband), CLI engine (nftban-core), and shell framework. It is NOT a general-purpose Go library or embeddable SDK.

For Go Developers

If you want to interact with a running NFTBan daemon from Go code, use the IPC client package: 

import "github.com/itcmsgr/nftban/pkg/ipc"

client := ipc.NewClient()
resp, err := client.Ban("192.168.1.100", 0, "reason", "source")

All other packages are internal implementation details and should not be imported directly. They may change without notice between releases.

Product Documentation

For installation, configuration, and usage documentation, visit: https://github.com/itcmsgr/nftban/wiki

Source Files

View all Source files

Directories

Path Synopsis
cmd
nftban-core command
nftban-installer command
============================================================================= NFTBan v1.75 - nftban-installer - CLI flag parsing ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="nftban-installer-flags" meta:type="cmd" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="CLI flag definitions and environment variable overrides" meta:inventory.files="cmd/nftban-installer/flags.go" meta:inventory.binaries="" meta:inventory.env_vars="NFTBAN_TAKEOVER, NFTBAN_INSTALLER_LOG" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
 ============================================================================= NFTBan v1.75 - nftban-installer - CLI flag parsing ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="nftban-installer-flags" meta:type="cmd" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="CLI flag definitions and environment variable overrides" meta:inventory.files="cmd/nftban-installer/flags.go" meta:inventory.binaries="" meta:inventory.env_vars="NFTBAN_TAKEOVER, NFTBAN_INSTALLER_LOG" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
nftban-ui command
nftban-ui-auth command
nftban-ui/handlers
nftband command
internal
analytics
Package analytics provides efficient batch operations for report generation
 Package analytics provides efficient batch operations for report generation
api
Package api provides HTTP handlers for the NFTBan web interface and REST API.
 Package api provides HTTP handlers for the NFTBan web interface and REST API.
auth
authproto
Package authproto defines shared authentication protocol types Used by both pkg/auth and cmd/nftban-ui-auth to ensure consistency
 Package authproto defines shared authentication protocol types Used by both pkg/auth and cmd/nftban-ui-auth to ensure consistency
banlog
SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
 SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
blacklist
botguard
config
configloader
constants
============================================================================= NFTBan v1.29.0 - Centralized Timeout & Interval Constants ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="constants/timeouts" meta:type="package" meta:version="1.0.0" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:description="Centralized timeout, interval, and duration constants" meta:inventory.files="timeouts.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
 ============================================================================= NFTBan v1.29.0 - Centralized Timeout & Interval Constants ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="constants/timeouts" meta:type="package" meta:version="1.0.0" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:description="Centralized timeout, interval, and duration constants" meta:inventory.files="timeouts.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
ddos
escalation
eventbus
feeds
Package feeds handles threat intelligence feed processing for NFTBan.
 Package feeds handles threat intelligence feed processing for NFTBan.
geoban
geoip
installer/authority
============================================================================= NFTBan v1.73 - Installer Authority Classification ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-authority-classify" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Authority decision tree: UPDATE/TAKEOVER/FRESH/ABORT" meta:inventory.files="internal/installer/authority/classify.go" meta:inventory.binaries="" meta:inventory.env_vars="NFTBAN_TAKEOVER" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Authority Classification ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-authority-classify" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Authority decision tree: UPDATE/TAKEOVER/FRESH/ABORT" meta:inventory.files="internal/installer/authority/classify.go" meta:inventory.binaries="" meta:inventory.env_vars="NFTBAN_TAKEOVER" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/detect
============================================================================= NFTBan v1.73 - Installer Conflict Detection ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-detect-conflicts" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Conflicting firewall detection (services + ghost nft tables)" meta:inventory.files="internal/installer/detect/conflicts.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Conflict Detection ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-detect-conflicts" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Conflicting firewall detection (services + ghost nft tables)" meta:inventory.files="internal/installer/detect/conflicts.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/executor
============================================================================= NFTBan v1.73 - Installer Executor Interface ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-executor" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Executor interface abstracting system commands for testability" meta:inventory.files="internal/installer/executor/executor.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Executor Interface ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-executor" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Executor interface abstracting system commands for testability" meta:inventory.files="internal/installer/executor/executor.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
installer/fhs
============================================================================= NFTBan v1.73 - Installer FHS Path Constants ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-fhs-paths" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="FHS-compliant path constants matching fhs-spec.yaml" meta:inventory.files="internal/installer/fhs/paths.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer FHS Path Constants ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-fhs-paths" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="FHS-compliant path constants matching fhs-spec.yaml" meta:inventory.files="internal/installer/fhs/paths.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
installer/history
============================================================================= NFTBan v1.73 - Installer Update History Writer ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-history" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="JSON update history compatible with nftban update history --json" meta:inventory.files="internal/installer/history/history.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/lib/nftban/update-history.json" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Update History Writer ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-history" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="JSON update history compatible with nftban update history --json" meta:inventory.files="internal/installer/history/history.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/lib/nftban/update-history.json" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/logging
============================================================================= NFTBan v1.73 - Installer Dual Logger ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-logger" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Dual console+file logger for installer output" meta:inventory.files="internal/installer/logging/logger.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/log/nftban/installer.log" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Dual Logger ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-logger" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Dual console+file logger for installer output" meta:inventory.files="internal/installer/logging/logger.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/log/nftban/installer.log" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/render
============================================================================= NFTBan v1.73 - Installer Config Persistence ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-render-config" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Persist SSH port and config values to conf.local and state" meta:inventory.files="internal/installer/render/config.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/etc/nftban/nftban.conf.local" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Config Persistence ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-render-config" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Persist SSH port and config values to conf.local and state" meta:inventory.files="internal/installer/render/config.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/etc/nftban/nftban.conf.local" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/services
============================================================================= NFTBan v1.73 - Installer Stale File Cleanup ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-services-cleanup" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Remove stale files, polkit rules, and legacy units from prior versions" meta:inventory.files="internal/installer/services/cleanup.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Stale File Cleanup ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-services-cleanup" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Remove stale files, polkit rules, and legacy units from prior versions" meta:inventory.files="internal/installer/services/cleanup.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/state
============================================================================= NFTBan v1.73 - Installer State File I/O ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-state-file" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="State file struct, atomic write, read, transition persistence" meta:inventory.files="internal/installer/state/file.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/lib/nftban/state/install_state" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer State File I/O ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-state-file" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="State file struct, atomic write, read, transition persistence" meta:inventory.files="internal/installer/state/file.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="/var/lib/nftban/state/install_state" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/switchop
============================================================================= NFTBan v1.75.1 - Installer nftables Service Enable ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-switchop-enable" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Enable and start nftables service with xt-compat pre-check" meta:inventory.files="internal/installer/switchop/enable.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="nftables.service" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.75.1 - Installer nftables Service Enable ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-switchop-enable" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Enable and start nftables service with xt-compat pre-check" meta:inventory.files="internal/installer/switchop/enable.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="nftables.service" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
installer/validate
============================================================================= NFTBan v1.73 - Installer Post-Install Assertions ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-validate-assertions" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Post-install kernel + service + state assertions" meta:inventory.files="internal/installer/validate/assertions.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
 ============================================================================= NFTBan v1.73 - Installer Post-Install Assertions ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="installer-validate-assertions" meta:type="lib" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:created_date="2026-04-04" meta:description="Post-install kernel + service + state assertions" meta:inventory.files="internal/installer/validate/assertions.go" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="root" =============================================================================
loginmon
loginmon/detector
loginmon/detector/cmd/test-detector command
logutil
logx
Package logx provides structured logging wrappers for NFTBan This centralizes log prefixes and makes future enhancements (JSON logs, levels) easier
 Package logx provides structured logging wrappers for NFTBan This centralizes log prefixes and makes future enhancements (JSON logs, levels) easier
metrics
Package metrics provides efficient metrics collection for NFTBan This collector replaces slow bash-based metrics with fast Go implementation
 Package metrics provides efficient metrics collection for NFTBan This collector replaces slow bash-based metrics with fast Go implementation
middleware
model
module
netutil
Package netutil provides network utility functions for NFTBan Centralizes IP address handling, whitelist checking, and CIDR operations
 Package netutil provides network utility functions for NFTBan Centralizes IP address handling, whitelist checking, and CIDR operations
network
nftables
nftbackend
Package nftbackend provides the core interface to nftables operations.
 Package nftbackend provides the core interface to nftables operations.
nftbanconf
nftlock
opqueue
parser
persistence
ports
portscan
runtime
safeconv
Package safeconv provides safe integer conversion functions that check bounds before converting between integer types, preventing silent overflow bugs.
 Package safeconv provides safe integer conversion functions that check bounds before converting between integer types, preventing silent overflow bugs.
safety
Package safety provides protection mechanisms to prevent self-lockout and ensure system stability during firewall operations.
 Package safety provides protection mechanisms to prevent self-lockout and ensure system stability during firewall operations.
session
Package session provides simple in-memory session management for nftban-ui.
 Package session provides simple in-memory session management for nftban-ui.
setsync
Package setsync provides efficient synchronization of IP sets with nftables.
 Package setsync provides efficient synchronization of IP sets with nftables.
state
stats
suricata
suricata/config
suricata/customrules
suricata/profile
suricata/recommendations
suricata/rules
suricata/scanner
suricata/stats
system
Package system provides unified system lookup utilities
 Package system provides unified system lookup utilities
testutil
Package testutil provides shared test utilities and fixtures for NFTBan tests.
 Package testutil provides shared test utilities and fixtures for NFTBan tests.
timeutil
SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
 SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
ui
ui/pages
util
SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
 SPDX-License-Identifier: MPL-2.0 Copyright (c) 2025 Antonios Voulvoulis <contact@nftban.com>
watchdog
============================================================================= NFTBan v1.0 - Dynamic Watchdog Package ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="doc" meta:type="package" meta:version="1.0.0" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:description="Package documentation for NFTBan watchdog system" meta:inventory.files="" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
 ============================================================================= NFTBan v1.0 - Dynamic Watchdog Package ============================================================================= SPDX-License-Identifier: MPL-2.0 meta:name="doc" meta:type="package" meta:version="1.0.0" meta:owner="Antonios Voulvoulis <contact@nftban.com>" meta:description="Package documentation for NFTBan watchdog system" meta:inventory.files="" meta:inventory.binaries="" meta:inventory.env_vars="" meta:inventory.config_files="" meta:inventory.systemd_units="" meta:inventory.network="" meta:inventory.privileges="none" =============================================================================
whitelist
pkg
ipc
Package ipc provides inter-process communication for the NFTBan daemon architecture.
 Package ipc provides inter-process communication for the NFTBan daemon architecture.
version

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.