Date: Thu, 19 Jul 2001 15:00:52 +0200 From: =?iso-8859-2?Q?Rafa=B3?= Banaszkiewicz <rafal@euromedia.pl> To: default013 - subscriptions <default013subscriptions@hotmail.com>, freebsd-security@FreeBSD.ORG Subject: Re: blocking I.P. addresses/ranges Message-ID: <3B56DA04.41D50B15@euromedia.pl> References: <OE6369RKLpgTFur2iz20000025c@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
default013 - subscriptions wrote: > > Hello, > > I know there is a way to block I.P. addresses/I.P. ranges in Linux by using > something like 'route add 24.198.54.0 deny' etc... I assume that there must > be a similar way to do this in FreeBSD... Is anyone familiar with this? How > would I do it? > I think You should use ipfw or ipfilter to do this, in example: # ipfw add deny log all from 192.0.2.0/24 to any via ed0 Connections with source address (any protocol) from subnet 192.0.2.0/24 will be filtered via interface ed0. Regards, -- // Rafal Banaszkiewicz, ircnet: RaFau, mailto: rafal[at]rafcio.net // nic hdl: RB5860-RIPE, 6bone-hdl: RB6-6BONE, ICQ uin: 35053919 // workphone: +48815382348 int. 21, homepage: http://1055491093 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3B56DA04.41D50B15>