/
dnsresolv.py
131 lines (122 loc) · 4.35 KB
/
dnsresolv.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
import socket
domains = [
"www.facebook.com",
"m.facebook.com",
"connect.facebook.net",
"business.facebook.com",
"api.facebook.com",
"api-read.facebook.com",
"graph.facebook.com",
"static.ak.fbcdn.net",
"fbstatic-a.akamaihd.net",
"static.ak.facebook.com",
"s-static.ak.facebook.com",
"facebook.com",
"fbstatic-a.akamaihd.net",
"fbcdn-profile-a.akamaihd.net",
"fbcdn-sphotos-a-a.akamaihd.net",
"fbcdn-creative-a.akamaihd.net",
"fbexternal-a.akamaihd.net",
"fbcdn-sphotos-b-a.akamaihd.net",
"fbcdn-sphotos-c-a.akamaihd.net",
"fbcdn-sphotos-d-a.akamaihd.net",
"fbcdn-sphotos-e-a.akamaihd.net",
"fbcdn-sphotos-f-a.akamaihd.net",
"fbcdn-sphotos-g-a.akamaihd.net",
"fbcdn-sphotos-h-a.akamaihd.net",
"ngrok.io",
"www.dailycred.com",
]
print "FirewallRuleSet global {"
print """
# facebook ip range
FirewallRule allow to 204.15.20.0/22
FirewallRule allow to 69.63.176.0/20
FirewallRule allow to 66.220.144.0/20
FirewallRule allow to 66.220.144.0/21
FirewallRule allow to 69.63.184.0/21
FirewallRule allow to 69.63.176.0/21
FirewallRule allow to 74.119.76.0/22
FirewallRule allow to 69.171.255.0/24
FirewallRule allow to 173.252.64.0/18
FirewallRule allow to 69.171.224.0/19
FirewallRule allow to 69.171.224.0/20
FirewallRule allow to 103.4.96.0/22
FirewallRule allow to 69.63.176.0/24
FirewallRule allow to 173.252.64.0/19
FirewallRule allow to 173.252.70.0/24
FirewallRule allow to 31.13.64.0/18
FirewallRule allow to 31.13.24.0/21
FirewallRule allow to 66.220.152.0/21
FirewallRule allow to 66.220.159.0/24
FirewallRule allow to 69.171.239.0/24
FirewallRule allow to 69.171.240.0/20
FirewallRule allow to 31.13.64.0/19
FirewallRule allow to 31.13.64.0/24
FirewallRule allow to 31.13.65.0/24
FirewallRule allow to 31.13.67.0/24
FirewallRule allow to 31.13.68.0/24
FirewallRule allow to 31.13.69.0/24
FirewallRule allow to 31.13.70.0/24
FirewallRule allow to 31.13.71.0/24
FirewallRule allow to 31.13.72.0/24
FirewallRule allow to 31.13.73.0/24
FirewallRule allow to 31.13.74.0/24
FirewallRule allow to 31.13.75.0/24
FirewallRule allow to 31.13.76.0/24
FirewallRule allow to 31.13.77.0/24
FirewallRule allow to 31.13.96.0/19
FirewallRule allow to 31.13.66.0/24
FirewallRule allow to 173.252.96.0/19
FirewallRule allow to 69.63.178.0/24
FirewallRule allow to 31.13.78.0/24
FirewallRule allow to 31.13.79.0/24
FirewallRule allow to 31.13.80.0/24
FirewallRule allow to 31.13.82.0/24
FirewallRule allow to 31.13.83.0/24
FirewallRule allow to 31.13.84.0/24
FirewallRule allow to 31.13.85.0/24
FirewallRule allow to 31.13.86.0/24
FirewallRule allow to 31.13.87.0/24
FirewallRule allow to 31.13.88.0/24
FirewallRule allow to 31.13.89.0/24
FirewallRule allow to 31.13.90.0/24
FirewallRule allow to 31.13.91.0/24
FirewallRule allow to 31.13.92.0/24
FirewallRule allow to 31.13.93.0/24
FirewallRule allow to 31.13.94.0/24
FirewallRule allow to 31.13.95.0/24
FirewallRule allow to 69.171.253.0/24
FirewallRule allow to 69.63.186.0/24
FirewallRule allow to 31.13.81.0/24
FirewallRule allow to 179.60.192.0/22
FirewallRule allow to 179.60.192.0/24
FirewallRule allow to 179.60.193.0/24
FirewallRule allow to 179.60.194.0/24
FirewallRule allow to 179.60.195.0/24
FirewallRule allow to 185.60.216.0/22
FirewallRule allow to 45.64.40.0/22
FirewallRule allow to 185.60.216.0/24
FirewallRule allow to 185.60.217.0/24
FirewallRule allow to 185.60.218.0/24
FirewallRule allow to 185.60.219.0/24
FirewallRule allow to 129.134.0.0/16
FirewallRule allow to 157.240.0.0/16
FirewallRule allow to 204.15.20.0/22
FirewallRule allow to 69.63.176.0/20
FirewallRule allow to 69.63.176.0/21
FirewallRule allow to 69.63.184.0/21
FirewallRule allow to 66.220.144.0/20
FirewallRule allow to 69.63.176.0/20
FirewallRule allow to 139.175.236.0/24
"""
for domain in domains:
print " # " + domain
dedupe = []
for info in socket.getaddrinfo(domain, 80):
if len(info[4]) == 2:
if info[4][0] not in dedupe:
dedupe.append(info[4][0])
for ip in dedupe:
print " FirewallRule allow to {}/32".format(ip)
print "}"