Date: Wed, 11 Aug 2021 16:56:56 -0500 From: Valeri Galtsev <galtsev@kicp.uchicago.edu> To: freebsd-questions@freebsd.org Subject: Re: Can ipfw Rules Be Based On DNS Name Message-ID: <dfb609f1-3a57-55ad-9273-63e24ecedb7f@kicp.uchicago.edu> In-Reply-To: <d278c269-d02f-c8db-bbb2-a877234dcc5f@tundraware.com> References: <ac332bfe-314a-ac76-eeb4-f0111bac4d0d@tundraware.com> <CAD=pOfk_aT3p9CF5mxQHpUobGfCReFj8d4v_WPR-Kys=PusOFQ@mail.gmail.com> <43c8bac1-9b19-4ad9-0968-17abdcd73785@tundraware.com> <d278c269-d02f-c8db-bbb2-a877234dcc5f@tundraware.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 8/11/21 4:48 PM, Tim Daneliuk via freebsd-questions wrote: > On 8/11/21 4:43 PM, Tim Daneliuk via freebsd-questions wrote: >> On 8/11/21 4:30 PM, Nathaniel Nigro wrote: >>> /etc/hosts.allow? >> >> >> Hmmmm and interesting possibility, actually. Thanks! >> >> > > Well, actually, that's not going to work because host.allow is for TCP > based connections and I'm already blocking everything from everywhere. > DNS uses UDP for query/replies. When I'm really annoyed by some domain that hides behind service showing it with different IPs all the time (cloudflare pops up in my mind, but I may be wrong), then I do whois [current domain's ip] which reveals me whoever is hiding that domain, and all blocks of IPs owned by them, Then I add to blocking table in ipfw all their address ranges. The one whom I learned it from said: if you block some good people, hm, they need to know who they are in company with, and leave for better company... Valeri PS I had to abandon ipfw, and switch over to pf, but that is different story. -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?dfb609f1-3a57-55ad-9273-63e24ecedb7f>