From owner-freebsd-questions@FreeBSD.ORG  Mon Oct 11 06:46:43 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1440816A4CE
	for <freebsd-questions@freebsd.org>;
	Mon, 11 Oct 2004 06:46:43 +0000 (GMT)
Received: from mail1.interlite.net (ns1.interlite.net [62.119.93.194])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 9BB9843D3F
	for <freebsd-questions@freebsd.org>;
	Mon, 11 Oct 2004 06:46:41 +0000 (GMT)	(envelope-from pelle@spd.nu)
Received: (qmail 22359 invoked by uid 89); 11 Oct 2004 08:43:12 +0200
Received: from unknown (HELO PELLEANDERSSON) (62.119.94.78)
  by mail1.interlite.net with SMTP; 11 Oct 2004 08:43:12 +0200
From: "Pelle Andersson" <pelle@spd.nu>
To: <freebsd-questions@freebsd.org>
Date: Mon, 11 Oct 2004 08:46:40 +0200
Organization: SPD Systems
Message-ID: <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAArvdSa/sjb0OI1eLKLXuK1sKAAAAQAAAAnNdJfVuVREajW0jiKTPoYAEAAAAA@spd.nu>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="US-ASCII"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
Thread-Index: AcSvXg+8UnRGMgcpQEONb2PpIPm3gQ==
X-Spam-DCC: : 
X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on 
	server1.interlite.net
X-Spam-Level: 
X-Spam-Status: No, hits=0.0 required=5.0 tests=none autolearn=no version=2.63
Subject: Adding network & IP to hosts.deny
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: pelle@spd.nu
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Oct 2004 06:46:43 -0000


Hi!

I have a lot of login attempts from various networks and IP addresses
on my FBSD 4.10 server. I have read the man pages for hosts.deny but
do not understand how to add networks and IP addresses to it.

Let's say I want to block the network address 192.168.100.0 and/or
the IP address 192.168.135.77.

What I understand is when using hosts.deny, I stopping them totally
from using any networking services, right?

Would it be better to let the built-in firewall (/etc/rc.firewall)
to stopping them? I have the firewall activated and have changed
the port for example SSH to a higher one.

Could someone please provide me with some examples on either using
hosts.deny or the default firewall?

A big thanks in advance,
Best Regards Pelle