Date: Wed, 23 Feb 2005 19:45:58 -0500 From: Jeff With <jeff.wirth@gmail.com> To: kalin mintchev <kalin@el.net> Cc: freebsd-questions@freebsd.org Subject: Re: hosts.allow Message-ID: <5d2cf6920502231645279eb0b4@mail.gmail.com> In-Reply-To: <61288.68.165.89.73.1109204411.squirrel@68.165.89.73> References: <61245.68.165.89.73.1109201689.squirrel@68.165.89.73> <20050223234302.GM253@dan.emsphone.com> <61288.68.165.89.73.1109204411.squirrel@68.165.89.73>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 23 Feb 2005 19:20:11 -0500 (EST), kalin mintchev <kalin@el.net> wrote:
> >> Feb 23 17:21:05 bigdaddy named[85641]: client 218.19.160.163#64057:
> no such chances. the machine is not on my local network. on the network
> where this machine is there is no windows machines. and the 218.19.160.163
> is somewhere in china....
>
> is there any other way to block it? except ipfw rules...
>
BIND version 9.x (not sure on the exact version) and up supports ACLs.
example named.conf
acl china {
218.19.160.163; } ;
options {
blackhole {china;};
};
- jeff
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5d2cf6920502231645279eb0b4>