Date: Sat, 19 Jun 1999 11:08:10 -0500 (EST) From: Alfred Perlstein <bright@rush.net> To: Sam Zamarripa <samz@oz.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW Questions Message-ID: <Pine.BSF.3.96.990619110709.14320M-100000@cygnus.rush.net> In-Reply-To: <4.1.19990619063443.00928290@mail.oz.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 19 Jun 1999, Sam Zamarripa wrote:
> 2 quick questions.
>
> 1. I'm running a DNS server for my internal LAN..but I do not want people
> on the outside using it. Will using IPFW to block INCOMING tcp/udp to port
> 53 prevent DNS from working?
>
> 2. I understand how you block an IP and even a CLASS C...but what about a
> DOMAIN? Here's what I mean specifically. Let's say I want to DENY a BIG
> site from accessing my machines. Let's for example use microsoft.com. Well
> simply IPFW deny'ing microsoft.com, will get only 1 of their Class
> C's..when microsoft.com has tons of IP Blocks. Is there anyway to block a
> domain short of figuring out each and every class C an ISP has?
/usr/ports/security/tcpwrappers
-Alfred Perlstein - [bright@rush.net|bright@wintelcom.net]
systems administrator and programmer
Win Telecom - http://www.wintelcom.net/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.990619110709.14320M-100000>