Date: Tue, 26 Mar 2002 19:33:58 -0800 From: "Tony Saign" <tony@saign.com> To: <freebsd-ipfw@FreeBSD.ORG> Subject: Rule to ignore/drop traffic from entire subnet?? Message-ID: <000401c1d540$3adf71f0$1401a8c0@frankenmobl>
next in thread | raw e-mail | index | archive | help
I have noticed certain IP address blocks (mostly from overseas), generating large logs on my router system. Is it possible to just drop/ignore and log all traffic originating from these subnets without affecting system performance with a rule or rules? Mar 24 00:19:55 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.72 <snip> in via fxp0 Mar 24 00:19:58 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.72 <snip> in via fxp0 Mar 24 00:21:18 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.70 <snip> in via fxp0 Mar 24 00:21:21 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.70 <snip> in via fxp0 Mar 24 00:22:58 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.65 <snip> in via fxp0 Mar 24 00:23:01 /kernel: ipfw: 3000 Deny ICMP:8.0 216.52.65.65 <snip> in via fxp0 Thanks in advance, -Tony To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000401c1d540$3adf71f0$1401a8c0>