Date: Mon, 2 Sep 2002 19:43:52 +0200 From: "Lists" <lists@gielstrup.dk> To: "Ian Kettleborough" <ian@idk.com>, <ipfw@freebsd.org> Subject: Re: Need some info please Message-ID: <002a01c252a8$4e05c6e0$0201a8c0@cghome> References: <200209012039.NAA20649@idk.com>
next in thread | previous in thread | raw e-mail | index | archive | help
What type of access?? Attempted zone transfers?? Do you wish to block off all dns incomming traffic? The you could use: ipfw add 10 deny log tcp from any to "yourhost" in via "your_interface_connected_to_internet" ipfw add 11 deny log udp from any to "yourhost" in via "your_interface_connected_to_internet" Are you using a "default to accept" configuration? You better change that, or I'll guess that you willl forget a lot of rules. Best regards Christian ----- Original Message ----- From: "Ian Kettleborough" <ian@idk.com> To: <ipfw@freebsd.org> Sent: Sunday, September 01, 2002 10:39 PM Subject: Need some info please > > I am getting a lot ofDNS accesses (one was 50,000) but when I catch these > I can block. What I am interested in the time that a typical denial > statement > > > ipfw add 1000 reject udp from x.x.x.0/24 to any > > > takes to run and is this the most efficent was to do it. > > I am still running 2.8 (until I get 6.2 installed) but I may have 50 of > these statements already mostly from eastern europe, china, russia and > others. > > Any help or suggestions appreciated. > > Thanks > Ian > ian@idk.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?002a01c252a8$4e05c6e0$0201a8c0>