From 81baae7983db608dde4a35159fccdb6f9adb80f5 Mon Sep 17 00:00:00 2001
From: root <root@nginx.home>
Date: Mon, 26 May 2025 08:42:41 +0000
Subject: [PATCH] filter whitelist generating nginx conf

---
 ufwban.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/ufwban.py b/ufwban.py
index bf720b2..3d2f87e 100644
--- a/ufwban.py
+++ b/ufwban.py
@@ -294,7 +294,9 @@ def gen_nginx_conf(dry_run: bool = False):
     ips_to_deny = [ip for ip in get_logs_to_deny(logs, rules).keys()]
     ips_denied = get_nginx_denied_ips()
 
-    ips = set(ips_to_deny) | set(ips_denied)
+    ips = [
+        ip for ip in set(ips_to_deny) | set(ips_denied) if not rules.is_whitelist(ip)
+    ]
     if not len(ips):
         logging.info("no ip to deny")
         return