From owner-freebsd-questions@FreeBSD.ORG  Sun Apr  4 19:17:22 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 34F8016A4CE
	for <freebsd-questions@FreeBSD.ORG>;
	Sun,  4 Apr 2004 19:17:22 -0700 (PDT)
Received: from mail.skiltech.com (bunning.skiltech.com [216.235.79.240])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E33D843D2D
	for <freebsd-questions@FreeBSD.ORG>;
	Sun,  4 Apr 2004 19:17:19 -0700 (PDT)
	(envelope-from minter@lunenburg.org)
Received: from localhost (localhost [127.0.0.1])
	by mail.skiltech.com (Postfix) with ESMTP id 5B72412078F
	for <freebsd-questions@FreeBSD.ORG>;
	Sun,  4 Apr 2004 22:17:19 -0400 (EDT)
Received: from mail.skiltech.com ([127.0.0.1])
 by localhost (bunning.skiltech.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 02372-02 for <freebsd-questions@FreeBSD.ORG>;
 Sun,  4 Apr 2004 22:17:18 -0400 (EDT)
Received: from [192.168.0.13] (rdu26-61-248.nc.rr.com [66.26.61.248])
	(using TLSv1 with cipher RC4-SHA (128/128 bits))
	(No client certificate requested)
	by mail.skiltech.com (Postfix) with ESMTP id B727612078D
	for <freebsd-questions@FreeBSD.ORG>;
	Sun,  4 Apr 2004 22:17:18 -0400 (EDT)
Mime-Version: 1.0 (Apple Message framework v613)
Content-Transfer-Encoding: 7bit
Message-Id: <5D4A40CA-86A7-11D8-991B-000A95A8D520@lunenburg.org>
Content-Type: text/plain; charset=US-ASCII; format=flowed
To: FreeBSD Mailing List <freebsd-questions@FreeBSD.ORG>
From: H.Wade Minter <minter@lunenburg.org>
Date: Sun, 4 Apr 2004 22:17:19 -0400
X-Pgp-Agent: GPGMail d34
X-Mailer: Apple Mail (2.613)
X-Virus-Scanned: by amavisd-new at skiltech.com
Subject: Simplest way to block a single IP?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Apr 2004 02:17:22 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've got a system that's sending a ton of referral spam to websites on 
my RELENG_4_9 system.  I'd like to block them from accessing my system 
at the TCP level.  What's the best and easiest way to do this?

I assume I'll need to recompile the kernel with IPFIREWALL or IPFILTER 
support, then set up some rules.  Does anyone have a recommendation for 
a simple ruleset to block one particular IP?

Thanks,
Wade
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (Darwin)

iD8DBQFAcMGvo4DwsyRGDscRAvoIAJ4qSJcJ9Xsd4QxR+Z4rjENzGhGY1QCgtIX6
FkU9HaQ3VOhAvY4RAYHvj2c=
=ZkOR
-----END PGP SIGNATURE-----