gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
0c55ef6ec1
secubox-openwrt/package/secubox/secubox-vortex-firewall/Makefile
CyberMind-FR d2953c5807 feat(vortex-firewall): Add DNS-level threat blocking with x47 multiplier 
Phase 1 implementation of Vortex DNS Firewall - SecuBox's first line
of defense blocking threats at DNS level BEFORE any connection is
established.

Features:
- Threat intel aggregator (URLhaus, OpenPhish, Malware Domains)
- SQLite-based blocklist database with domain deduplication
- dnsmasq integration via sinkhole hosts file
- x47 vitality multiplier concept (each DNS block prevents ~47 connections)
- RPCD handler for LuCI integration with 8 methods
- CLI tool: vortex-firewall intel/stats/start/stop

Tested with 765 blocked domains across 3 threat feeds.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-11 06:58:02 +01:00

60 lines
1.6 KiB
Makefile
Raw Blame History

include $(TOPDIR)/rules.mk
PKG_NAME:=secubox-vortex-firewall
PKG_VERSION:=1.0.0
PKG_RELEASE:=1
PKG_MAINTAINER:=SecuBox Team
PKG_LICENSE:=GPL-3.0
include $(INCLUDE_DIR)/package.mk
define Package/secubox-vortex-firewall
SECTION:=secubox
CATEGORY:=SecuBox
TITLE:=Vortex DNS Firewall
DEPENDS:=+dnsmasq-full +curl +sqlite3-cli +ca-certificates
PKGARCH:=all
endef
define Package/secubox-vortex-firewall/description
DNS-level threat blocking with x47 impact multiplier.
Blocks malware, phishing, and C2 at DNS resolution before
any connection is established. Integrates threat feeds from
abuse.ch, OpenPhish, and local DNS Guard detections.
endef
define Package/secubox-vortex-firewall/conffiles
/etc/config/vortex-firewall
endef
define Build/Compile
endef
define Package/secubox-vortex-firewall/install
$(INSTALL_DIR) $(1)/usr/sbin
$(INSTALL_BIN) ./root/usr/sbin/vortex-firewall $(1)/usr/sbin/
$(INSTALL_DIR) $(1)/etc/init.d
$(INSTALL_BIN) ./root/etc/init.d/vortex-firewall $(1)/etc/init.d/
$(INSTALL_DIR) $(1)/etc/config
$(INSTALL_CONF) ./files/config/vortex-firewall $(1)/etc/config/
$(INSTALL_DIR) $(1)/usr/libexec/rpcd
$(INSTALL_BIN) ./root/usr/libexec/rpcd/luci.vortex-firewall $(1)/usr/libexec/rpcd/
$(INSTALL_DIR) $(1)/usr/share/rpcd/acl.d
$(INSTALL_DATA) ./root/usr/share/rpcd/acl.d/luci-vortex-firewall.json $(1)/usr/share/rpcd/acl.d/
endef
define Package/secubox-vortex-firewall/postinst
#!/bin/sh
[ -n "$${IPKG_INSTROOT}" ] || {
/etc/init.d/vortex-firewall enable
/etc/init.d/vortex-firewall start
}
exit 0
endef
$(eval $(call BuildPackage,secubox-vortex-firewall))
Reference in New Issue View Git Blame Copy Permalink