From brokenpoet.org wiki

DShield is a 'Cooperative Network Security Community'

They maintain a blocklist, which is updated daily, based on firewall logs submitted from around the world. The data is sorted and compiled into a small list of the top 20 offenders of the day.

Submitters can actually track their own activity as compared to others using charts and graphs, etc.

This will not actually submit logs, but simply download the blocklist.

This will setup a cronjob to run every day at 10am (after the list has been updated). The purpose of this job is to remove rules from the previous day and add the new blocklist rules to the firewall.

It will work with apf, csf or iptables. You will have to modify the script /etc/dshield/getdshieldblocklist.sh and comment or uncomment the 'ban' variable to fit your need.

To install:

wget http://scripts.brokenpoet.org/getdshieldblocklist-0.0.3.tar.gz
tar -zxf getdshieldblocklist-0.0.3.tar.gz
cd getdshieldblocklist-0.0.3
sh install.sh

Then use your favorite text editor to modify /etc/dshield/getdshieldblocklist.sh . . . simply uncomment or comment as needed:

#ban="csf"
#ban="iptables"
ban="apf"

If you wish to uninstall simply:

sh uninstall.sh