Auto IPSet Rule Deployer

Deploy local server's ipset rules to other remote servers automatically.


  • Clone repository
git clone
  • Copy RSA(SSH) key for root user for remote access, change name to id_rsa.key and copy to the root path of the project directory
chmod 400 id_rsa.key
  • All installation and running commands on remote servers are required root user permission. Allow root user login on remote servers if it's disabled. See here for more info Login as root Python v3.6+ is required and tested on Ubuntu 18.04
add-apt-repository ppa:deadsnakes/ppa
apt update
apt -y install python3
apt -y install python3-pip
pip3 install virtualenv
  • Create virtual env and install dependencies
virtualenv .venv
source .venv/bin/activate
pip3 install -r requirements.txt
  • Check all available CLI commands


  • Firstly, run add-server command and register servers.(you have to add local server that monitors MySQL database change. Use localhost or
python3 add-server
  • Run init command and install and config, basic settings automatically for all servers.
python3 init
  • Run reset-ipset command to clean up local server's ipset rules(Not for other servers)

  • Run reset-servers command to clean up all ipsets and iptable rules in all servers(factory mode :)

  • Add two cron jobs. One is for syncing mysql db and set proper ipset, other one is to deploy ipset rules to all servers

crontab -e
# setup cron job
* * * * * cd /path/to/the/project/folder && .venv/bin/python3 sync
* * * * * cd /path/to/the/project/folder && .venv/bin/python3 deploy