From owner-freebsd-questions Tue Sep 18 18:13: 7 2001 Delivered-To: freebsd-questions@freebsd.org Received: from ns2.austclear.com.au (ns2.austclear.com.au [192.43.185.70]) by hub.freebsd.org (Postfix) with ESMTP id 69C2437B411 for ; Tue, 18 Sep 2001 18:13:00 -0700 (PDT) Received: from tungsten.austclear.com.au (tungsten.austclear.com.au [192.168.166.65]) by ns2.austclear.com.au (8.11.2/8.11.3) with ESMTP id f8J1Cw467146; Wed, 19 Sep 2001 11:12:58 +1000 (EST) (envelope-from ahl@austclear.com.au) Received: from tungsten (tungsten [192.168.166.65]) by tungsten.austclear.com.au (8.9.3/8.9.3) with ESMTP id LAA29963; Wed, 19 Sep 2001 11:12:58 +1000 (EST) Message-Id: <200109190112.LAA29963@tungsten.austclear.com.au> X-Mailer: exmh version 2.1.1 10/15/1999 To: klein brock Cc: questions@FreeBSD.ORG Subject: Re: FIREWALL REALLY NEED HELP In-Reply-To: Message from klein brock of "Tue, 18 Sep 2001 18:10:00 MST." <20010919011000.72930.qmail@web20110.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 19 Sep 2001 11:12:58 +1000 From: Tony Landells Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG getzz1@yahoo.com said: > also.. i'm trying to block ip '209.12.*.*' > ipfw add deny all from 209.12.0.0/24 to any via any > but it doesn't block any ip from 209.12.* Because that's not what you asked for... Each number in an IP address is 8 bits, so the rule you want is ipfw add deny all from 209.12.0.0/16 to any via any The rule you had only blocks 209.12.0.* Tony -- Tony Landells Senior Network Engineer Ph: +61 3 9677 9319 Australian Clearing Services Pty Ltd Fax: +61 3 9677 9355 Level 4, Rialto North Tower 525 Collins Street Melbourne VIC 3000 Australia To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message