From owner-freebsd-questions  Mon Feb 19 14:18:28 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from gekko.i-clue.de (server.ms-agentur.de [62.153.134.194])
	by hub.freebsd.org (Postfix) with ESMTP id 56AE937B401
	for <questions@freebsd.org>; Mon, 19 Feb 2001 14:18:25 -0800 (PST)
Received: from i-clue.de (automatix.i-clue.de [192.168.0.112])
	by gekko.i-clue.de (8.9.3/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id AAA09024;
	Tue, 20 Feb 2001 00:24:11 +0100
Message-ID: <3A919BFA.C3652EFE@i-clue.de>
Date: Mon, 19 Feb 2001 23:19:38 +0100
From: Christoph Sold <so@server.i-clue.de>
Reply-To: so@server.i-clue.de
X-Mailer: Mozilla 4.75 [de] (WinNT; U)
X-Accept-Language: de
MIME-Version: 1.0
To: Lee J Carmichael <lcarmich@wamnet.com>
Cc: questions@freebsd.org
Subject: Re: Blocking access to a machine
References: <Pine.SGI.3.96.1010219154051.25108g-100000@y.cops.wamnet.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG



Lee J Carmichael schrieb:
> 
> Hello Gerald,
> 
> You could just blackhole the route with something like:
> 
> route add -blackhole pD4B88246.dip.t-dialin.net localhost
> 
> This would stop routing back to them... We use this quite a bit.
> 
> This assumes that 'pD4B88246.dip.t-dialin.net' will resolve locally.

It will, and it won't make you happy.  t-dialin.net ist the dialin pool
of German Telekom. Thousands of (ADSL-, ISDN-, Modem-) lines, waiting
for script kiddies to surf on. Think of 'em like of AOL. Blocking one
port won't help, blocking them all isn't a possibility.

HTH
-Christoph Sold


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message