Date: Thu, 17 Jun 2010 13:56:23 -0700 (PDT) From: Valerian Galeru <valerian_ro@yahoo.com> To: freebsd-questions@freebsd.org Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of an A-like HOSTNAME) Message-ID: <377948.61150.qm@web30701.mail.mud.yahoo.com> In-Reply-To: <4C1A89D9.6040104@bah.homeip.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Ok, very simple put:
To do this without shell scripting, but this could avoid filter future IP addresses:
1. DIG HOSTNAMEs and add ipfw block rules for those IPs
2. DIG HOSTNAMEs and add a null rule
To block all *.hostname and future IP addresses of any of *.hostname, there must be written a shell script, that analyzes all requests [have no idea how to execute a shell script LIVE!!!, any idea on this topic?].
--- On Thu, 6/17/10, Bernt Hansson <bernt@bah.homeip.net> wrote:
From: Bernt Hansson <bernt@bah.homeip.net>
Subject: Re: FreeBSD router (IPFW-based): how to block an URL (all IPs of an A-like HOSTNAME)
To: "Valerian Galeru" <valerian_ro@yahoo.com>
Cc: freebsd-questions@freebsd.org
Date: Thursday, June 17, 2010, 11:47 PM
Valerian Galeru said the following on 2010-06-17 22:01:
> Hello,
>
> Does anyone have any ideas how to block all requests using an IPFW-based router
> (FreeBSD 6.4) to and from a HOSTNAME (which has more DNS A entries) or better, from any *.HOSTNAME.COM ????
Do a whois hostname.com taking note of their ip-address range. Then, for ipf, put this in your rules file.
### EXAMPLE ###
block in quick on fxp0 from 192.168.0.0/16 to any
block out quick on fxp0 from any to 192.168.0.0/16
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?377948.61150.qm>