Chapter 3. Installing jwall-rbld

Table of Contents

Installing the Debian Package
Integrating jwall-rbld
Blocking in Clients in ModSecurity Clusters

Installing the Debian Package

The quickstart instructions above do provide a way to start the daemon in foreground. To run the jwall-rbld as a regular daemon process (recommended) you can use the Apache commons jsvc package. This is available on most Debian based systems and a Debian package of jwall-rbld, which makes use of this is provided at:

http://download.jwall.org/jwall-rbld/current/

This package (file is called jwall-rbld-0.1-4.deb) can be installed with the dpkg command by running (as root):

# dpkg -i jwall-rbld-0.1-4.deb

Note that jwall-rbld depends on the jsvc package, which also needs to be installed (e.g. using apt-get install jsvc).

By default this will start the DNS server listening on UDP port 15353 and the admin interface listening on port TCP 15354. Note, that the daemon only listens on the localhost address.

Installing from jwall.org Debian Repository

There exists an apt-repository for Debian and Ubuntu systems at jwall.org to ease the install of the jwall-rbld package. This will always contain the most stable version.

To install jwall-rbld via apt-get you will need to add the following line to your /etc/apt/sources.list file:

deb http://download.jwall.org/debian/ jwall main

Since the packages within that repository are all signed with my GPG key, you will need to add the key to your apt keyring. The key can be found at

http://download.jwall.org/debian/chris.gpg

To add it, run

# wget http://download.jwall.org/debian/chris.gpg
# apt-key add chris.gpg

Installing via apt-get

After you added the repository key and the URL to your settings as described above, you can now update your package lists and install the jwall-rbld daemon:

# apt-get update
# apt-get install jwall-rbld

This will install the jsvc package, which is a Java daemon service and cares for the jwall-rbld to start up properly.

The settings for your jwall-rbld can be found in /etc/jwall-rbld.conf.