Date: Tue, 28 May 2002 12:19:32 +0200 From: "Patrick O'Reilly" <bsd@perimeter.co.za> To: "Chris Appleton" <appleton_chris@yahoo.com>, <freebsd-questions@FreeBSD.ORG> Subject: Re: ipfw range filter? Message-ID: <01c101c20631$2b107c20$b50d030a@PATRICK> References: <20020528100031.56453.qmail@web14802.mail.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message -----
From: "Chris Appleton" <appleton_chris@yahoo.com>
> is it possible to filter a range of ip's with one rule?
>
> unfortunately i've got a c class and just have the one subnet so i
> don't think i can use /x for instance. i could try and create proper
> subnets, but of course want the quickie.
>
> i don't like having 60 rules for pop and smtp to hosted servers.
Chris,
The /x notation is specifically for subnets - so I'm sure you can do
this.
For example, if your subnet is 100.100.100.32 to 100.100.100.63, with a
subnet mask of 255.255.255.224, then you could construct rules like
this:
ipfw add 100 allow tcp from any to 100.100.100.32/27 25 setup # smtp
ipfw add 100 allow tcp from any to 100.100.100.32/27 110 setup # pop
Hope this helps...
Regards,
Patrick O'Reilly.
___ _ __
/ _ )__ __ (_)_ __ ___ _/ /____ __
/ __/ -_) _) / ~ ) -_), ,-/ -_) _)
/_/ \__/_//_/_/~/_/\__/ \__/\__/_/
http://www.perimeter.co.za
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01c101c20631$2b107c20$b50d030a>