diff --git a/shorewall-blacklist.sh b/shorewall-blacklist.sh
new file mode 100755
index 0000000..dc0cad9
--- /dev/null
+++ b/shorewall-blacklist.sh
@@ -0,0 +1,51 @@
+#!/bin/bash
+#
+# Shorewall blacklist file
+# blacklist file
+#
+BLACKLIST="/etc/shorewall/blacklist"
+
+#
+# get URL
+# 
+
+URL[0]="http://feeds.dshield.org/block.txt"
+URL[1]="http://www.spamhaus.org/drop/drop.lasso"
+
+#Counrtry BlockLists
+COUNTRY=(cn tw)
+IPDENY="http://www.ipdeny.com/ipblocks/data/countries"
+
+# 
+# Don't Edit After this line
+#
+
+# Temporary dump staging folder
+  TMP=$(mktemp -d -t tmp.XXXXXXXXXX)
+  #
+  # @method to delete Temporary folder
+  #
+  function finish {
+    rm -rf "$TMP"
+}
+trap finish EXIT
+
+cat $BLACKLIST > "$TMP/blacklist"
+cat /dev/null > $BLACKLIST
+
+echo "#AUTO LIST" >> "$TMP/blacklist"
+## top 20 attacking class C (/24)
+wget -q -O - ${URL[0]} | sed '1,/Start/d' | sed '/#/d' | awk '{print $1,$3}' | sed 's/ /\//' >> "$TMP/blacklist"
+
+##  Spamhaus DROP List
+wget -q -O - ${URL[1]} | sed '1,/Expires/d' | awk '{print $1}'  >> "$TMP/blacklist"
+
+## Country Blocklists
+for BLOCK in ${COUNTRY[*]}; do
+    wget -q -O - $IPDENY/$BLOCK.zone  | awk '{print $1}' >> "$TMP/blacklist"
+done
+echo "#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE" >> "$TMP/blacklist"
+
+cat "$TMP/blacklist" > $BLACKLIST
+
+shorewall refresh &>/dev/null