i am currently using ipfire together with the asn script from maloe maloe/ASN_IPFire_Script: IPFire network object creator for IPv4 addresses based on ASN information - NotABug.org: Free code hosting. I use it to block all the “Datenkraken” like oracle, google, facebook, amazon, acxiom, experian etc…
Re-reading the firewall rules now takes about half an hour. It is not fun to change the rules. Is there a way to optimise this?