Date: Sat, 14 Nov 2020 12:49:12 -0600 From: "J. Hellenthal" <jhellenthal@dataix.net> To: John-Mark Gurney <jmg@funkthat.com> Cc: FreeBSD-security@freebsd.org Subject: Re: pf/pfctl loading CIDR tables & IPv6 Message-ID: <F1F41363-4296-4DA0-A4B9-6B9DB600E59A@dataix.net> In-Reply-To: <20201114183908.GL31099@funkthat.com> References: <20201114183908.GL31099@funkthat.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Well shoot! I don=E2=80=99t even think about going down that rabbit hole. Th= ank you.=20 Wondering if it be more useful tho to skip past those formatting errors to c= ontinue reading the rest of the list instead of just discarding the results a= nd not loading the remainder. I=E2=80=99ll be in touch with ip2locatiin as well --=20 J. Hellenthal The fact that there's a highway to Hell but only a stairway to Heaven says a= lot about anticipated traffic volume. > On Nov 14, 2020, at 12:39, John-Mark Gurney <jmg@funkthat.com> wrote: >=20 > =EF=BB=BFJ. Hellenthal via freebsd-security wrote this message on Sat, Nov= 14, 2020 at 10:58 -0600: >> Hoping someone might be able to shed some light on this and get to a conc= lusion faster than I have time for right now. >>=20 >>=20 >> But while loading a CIDR formatted list with ???#??? comments from [1] I a= m getting the following error for multiple entries >10 and results in the on= ly the partial list being loaded into the table??? The settings to download t= he file[2] are from the Russian Federation, IPv6 and in CIDR format. >>=20 >> ??? (pfctl -v -t blacklist -T add -f [???] >> No ALTQ support in kernel >> ALTQ related functions disabled >> no IP address found for 2001:BB6:6A10:4200:58D7:5934:7 >=20 > Well, this isn't a valid ipv6 address. There are only 7 segments, > where as an ipv6 address needs 8. There is not a :: to fill out the > missing segment. >=20 > --=20 > John-Mark Gurney Voice: +1 415 225 5579 >=20 > "All that I will do, has been done, All that I have, has not."
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F1F41363-4296-4DA0-A4B9-6B9DB600E59A>