Date: Mon, 13 Aug 2001 14:25:51 +0700 From: Roman Zabolotnikov <romaha@eoffice.ru> To: freebsd-security@freebsd.org Subject: RE: Easy IPFW question... Message-ID: <D56EF1EAF8CCD21180A8009027177D3B6BF87B@fs.novosoft.ru>
next in thread | raw e-mail | index | archive | help
Try to use ":" sign between ip and netmask For example ipfw add deny log all from 192.168.0.1:255.255.0.0 to any via ed0 Please write what are you see on the console when execute this command. Elso see on the output of command Ipfw list |grep 192.168 To make sure your command in kernel tables. Do you use NAT on your network? It's may be the cause of your problem > -----Original Message----- > From: default - Subscriptions > [mailto:default013subscriptions@hotmail.com] > Sent: Monday, August 13, 2001 2:12 PM > To: freebsd-security@freebsd.org; freebsd-questions@freebsd.org > Subject: Easy IPFW question... > > > Hi, > > I'm kinda new to IPFW, and I was unable to figure this out by > myself... > > I want to block an I.P. range, say 192.168.0.1, with a > netmask of 255.255.0.0 ... > > The rule I tried was this: > ipfw add deny log all from 192.168.0.1/16 to any via ed0 > > I then attempted to access the server from this I.P. range > and was able to do it normally... basically I don't want > anyone in this I.P. range to be able to see anything at all... > > Thanks, > > Jordan > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?D56EF1EAF8CCD21180A8009027177D3B6BF87B>