Date: Sun, 14 Jan 2007 10:34:59 +0100 From: Gergely CZUCZY <phoemix@harmless.hu> To: Abdullah Al-Marrie <almarrie@gmail.com> Cc: freebsd-pf@freebsd.org Subject: Re: pf rules to allow tlds Message-ID: <20070114093459.GA87944@harmless.hu> In-Reply-To: <499c70c0701140131o74931087kcf06dd9c55d2e071@mail.gmail.com> References: <499c70c0701140109x52556e29ncdef302fc9585474@mail.gmail.com> <20070114091654.GA87642@harmless.hu> <499c70c0701140131o74931087kcf06dd9c55d2e071@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--C7zPtVaVf+AK4Oqc Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Jan 14, 2007 at 12:31:58PM +0300, Abdullah Al-Marrie wrote: > I couldn't find accurate info about the cidrs in the net, beside they > are changing from time to time, I wish I could use domains, if this is > an option please let me know :) you cannot use domains, there are several reasons for that: 1) pf is not doing domain resolving at packet-matching time 2) DNS names are both changing 3) DNS names can point outside of the given country 4) reverse DNS entries can be missing 5) reverse DNS entries can point outside of the country start here: http://www.iana.org/ Bye, Gergely Czuczy mailto: gergely.czuczy@harmless.hu --=20 Weenies test. Geniuses solve problems that arise. --C7zPtVaVf+AK4Oqc Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) owF1U79rFEEUPhO0GEiRQkgh8qw05Payd5efKzHGJAaFGDHxB4jI3O7buyG7M+vM 25yXIgg2FhaiZRBtBFMIFjaCnb3/gL1Y2FnZ+ebCBQWthnk/vu9735t5NjJcGRr9 8v7D3Ymnz/ePvRu+1ZrISyLdDnJpd5QO6mFYD+Zm56emgtlgZjoM49Zsc6YRx/NN rK8e/FpeNppQU7DVKzACwoc0WWRS6fMQd6R1SAslpcGcGNStKFcYp0gZHYHSmdJ4 lNuyUrsUbbCqY5Mo3Y7gQWkIk6CwSpNsZSjEhobNUlfhqtRQn6pCIwxnQRLUG1Gz Hk3PXV+HibAZhlVYaiVllskOLGXBurRWIXQtw0XiAlyB2JRZos8SpEonIOO4tJKQ JaUGZMuUBNRBiFViHQf7F41UhRY6laC/9xhHWvSD6jarhdSaHEjlnDX9s8o8XeU6 AzooHUJicvbHVUGljKIY3XkgDabwrkCRoeSyDAkYaVubLkTjomdKiKXWhv4GYR0s wctwuINWZmC53WgHqbGclRSJ+jgUKdOA706Ml3rYz7XOZDs+wA4WMt5G4s1T3PEh P4FojMPKtU3QMkfXp2kZ6hyNLJp/plkfFAxPwPb1XTJp37i22kHtLdBke2JqnHlZ K4/he3nzvJrD7hZCrpzzyNP/r/onxwBdOJKWwNsSQYeoiCYnu91uTUkta8a2J4W4 1MOqEGto25j1YHm3jHd7gv3IyETQPgzX4n74Ij/iPEPnap1SiCBYaITiNqL2Uggd 1WCNL7wRB95JhMIafqa561vPhimHNfFkcfh4xf+WwVcbHbr3ufKq2D/3aC/8sXHy 7Y03305U7o98DQ4qr1+Ovfh+c/jUnU8/P14+83hh7PTeov0N =PdUi -----END PGP SIGNATURE----- --C7zPtVaVf+AK4Oqc--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070114093459.GA87944>