Date: Sun, 11 Jun 2006 10:11:57 -0400 From: "fbsd" <fbsd@a1poweruser.com> To: "Dan Mahoney, System Admin" <danm@prime.gushi.org>, <questions@freebsd.org> Subject: RE: Deny large number of IPs via ipfw Message-ID: <MIEPLLIBMLEEABPDBIEGOEFBHIAA.fbsd@a1poweruser.com> In-Reply-To: <20060611083416.A86148@prime.gushi.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Using such an list of ip address from a major rbl is flawed at the core of the idea. Over 85% of those 3 million ip address are spoofed in the first place. Most are what would be called false positives. Reread the info at the source cbl.abuseat.org it says the data is not intended to be used the way you are trying to use it. You really need to rethink what you are doing. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Dan Mahoney, System Admin Sent: Sunday, June 11, 2006 8:36 AM To: questions@freebsd.org Subject: Deny large number of IPs via ipfw Hey all, I've got a file that I just synced from a major RBL, and I'd like to just use it to globally deny access to my system. Is there an easy way to do this within ipfw -- the file is about 3 *million* lines, and is from cbl.abuseat.org. -Dan -- "SOY BOMB!" -The Chest of the nameless streaker of the 1998 Grammy Awards' Bob Dylan Performance. --------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC ICQ: 13735144 AIM: LarpGM Site: http://www.gushi.org --------------------------- _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MIEPLLIBMLEEABPDBIEGOEFBHIAA.fbsd>