[Firewall] BLOCK_HOSTS_FILE & CIDR blocking

Jon Todaro jontodaro at gmail.com
Tue Jul 8 07:15:12 MDT 2008


Is this possible beyond a Class C?

My setup consists of the following:

*Ubuntu 8.04 Server*

I have the following setting it my firewall.conf file (using debconf.cfg)
*BLOCK_HOSTS_FILE=$DC_BLOCK_HOSTS_FILE*

I have the following setting it my debconf.cfg file
*DC_BLOCK_HOSTS_FILE=/etc/arno-iptables-firewall/blocked-hosts*

The following in the blocked-hosts file works:
*60.172.214.0-255
60.172.215.0-255
60.172.216.0-255
60.172.217.0-255
60.172.218.0-255
60.172.219.0-255*

But I would like to do something like the following to block this whole
CHINANET-AH address space assignment, without listing each class
AAA.BBB.CCC.0-255 individually
*60.166.0.0/13
60.174.0.0/15


*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.btito.net/pipermail/firewall_lists.btito.net/attachments/20080708/643102e1/attachment.html 


More information about the Firewall mailing list