#!/bin/bash

IPTABLES=/sbin/iptables
DROPDIR=/var/lib/droplist

[ -d $DROPDIR ] || mkdir $DROPDIR
DROPLIST=$DROPDIR/drop.lasso
[ -f $DROPLIST ] && rm $DROPLIST
wget "http://www.spamhaus.org/drop/drop.lasso" -q -O $DROPLIST

[ -f $DROPLIST ] || exit 121

$IPTABLES -F filter_drop

cat "$DROPLIST" \
 | sed -e 's/;.*//' \
 | grep -v '^ *$' \
 | while read NB ; do
    $IPTABLES -A filter_drop -s "$NB" -j DROP
    $IPTABLES -A filter_drop -d "$NB" -j DROP
done