This would make sense, wouldn't it? But, it doesn't work :(
I'm using tcprulescheck with a file that looks like this:
.domain.net:allow,RELAYHOST=" "
:deny
and the response I get from tcprulescheck with TCPREMOTEHOST set to
host.domain.net is:
rule :
deny connection
:(
-Brice
Andrew Gray wrote:
> the way I would try it is
>
> for all hosts at a domain
> .domain.net.au:allow,RELAYCLIENT=""
>
> for just one host
> host.domain.net.au:allow,RELAYCLIENT=""
>
> similarly for IP based block, a whole class C
> 10.29.184.:deny
>
> a single IP
> 10.29.184.1:deny
>
> Regards
>
> Andrew Gray
> Network Administrator
> NetConnect Communications
>
> [EMAIL PROTECTED]
> ph +61 3 5332 2140
>
> required email legal disclaimer
> http://gray.ballarat.net.au/disclaimer.htm
>
> > -----Original Message-----
> > From: Brice Ruth [mailto:[EMAIL PROTECTED]]
> > Sent: Thursday, September 21, 2000 8:43 AM
> > To: [EMAIL PROTECTED]
> > Subject: tcprules question
> >
> >
> > Apparently since version 0.86 of ucspi-tcp, you can make rules based on
> > TCPREMOTEHOST. Furthermore, this ought to be the syntax:
> >
> > (1) tcp.smtp:
> > =host.domain.net:allow,RELAYHOST=" "
> > :allow
> >
> > this allows relaying to connections coming from host.domain.net
> >
> > (2) tcp.smtp:
> > domain.net:allow, RELAYHOST=" "
> > :allow
> >
> > this allows relaying to connections coming from *.domain.net
> >
> > The second one doesn't work - I can't get anything to work besides
> > relaying for a particular host.
> >
> > Any clues? Help is as always much appreciated! :)
> >
> > -Brice Ruth
> >
> >