Date: Thu, 16 Mar 2000 14:42:16 -0500 From: Mike Tancsa <mike@sentex.ca> To: bwoods2@uswest.net, freebsd-security@FreeBSD.ORG Subject: Re: IPFW...1 more question..... Message-ID: <3.0.5.32.20000316144216.00c94ac0@marble.sentex.ca> In-Reply-To: <XFMail.000316113414.wwoods@cybcon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:34 AM 3/16/00 -0800, William Woods wrote: >This firewall rule, > >ipfw add 001 deny log ip from aol.com/24 to alpha.cybcon.com > >am I correct in assuming that this will block ALL traffic from aol.com to >alpha.cybcon.com and log it? No. You need to specify IP ranges for ipfw to work. Putting in aol.com will just block whatever A record comes up for the host aol.com. It sounds like using libwrap (aka tcp_wrapper) might get what you want, or even things like .htaccess if you want to block website access. However, this will not always work either, as some of AOL's outsourced dialup might have PTR records of the outsourcing company, and not aol.com. ---Mike ------------------------------------------------------------------------ Mike Tancsa, tel +1 519 651 3400 Network Administrator, mike@sentex.net Sentex Communications www.sentex.net Cambridge, Ontario Canada To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.5.32.20000316144216.00c94ac0>