Re: [gentoo-user] iptables: block full ip-range
Hi, There you go! That's very cool that calculator. Chris On 25 Jan 2005, at 20:02, Ralph Slooten wrote: Thanks Chris ... it's not all 100% clear now, but slowly understanding more. When I eventually get it I'll create a php script to do it for me *g*. Thanks again for your time. I did find this though: http://logi.cc/nw/NetBitCalc.html (using the netaddr option). Maybe it'll interest others too. Ralph Chris Boot wrote: Hi, I used the IP Address Converter section. I got the binary for the first IP (218.144.0.0), which is: 11011010 1001 Then for the second (218.159.255.255), which is 11011010 1001 Notice how the first 12 bits stay the same, and the last 12 change? 12 is the magic number in this case. :-) There should be an easier tool for this, but it does the trick. Chris -- gentoo-user@gentoo.org mailing list -- Chris Boot [EMAIL PROTECTED] http://www.bootc.net/ -- gentoo-user@gentoo.org mailing list
[gentoo-user] iptables: block full ip-range
Hello fellow gentoo users, I run my own dedicated internet server from home with of course gentoo. What I have noticed, as probably many of you have, is that users from certain ISP's do daily attempts to relay mail, log into ssh etc etc ... Ok, so I'm pretty well secured as they don't even come close, but I'm still not happy. Most of these attempts come from kornet, as with most of my spam. What I would like to do is drop their whole entire ip-range with iptables... but how? I know how with a simple subnet, but some (they have several) of their ranges are given as: 218.144.0.0 - 218.159.255.255 Is there any way to add this range in iptables easily, without having to do each from 218.144* 218.145* etc etc Greetings Ralph -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] iptables: block full ip-range
Hi, I found a nice IP address calculator at http://www.telusplanet.net/public/sparkman/netcalc.htm Using that, we get 218.144.0.0/12. HTH, Chris Ralph Slooten wrote: Hello fellow gentoo users, I run my own dedicated internet server from home with of course gentoo. What I have noticed, as probably many of you have, is that users from certain ISP's do daily attempts to relay mail, log into ssh etc etc ... Ok, so I'm pretty well secured as they don't even come close, but I'm still not happy. Most of these attempts come from kornet, as with most of my spam. What I would like to do is drop their whole entire ip-range with iptables... but how? I know how with a simple subnet, but some (they have several) of their ranges are given as: 218.144.0.0 - 218.159.255.255 Is there any way to add this range in iptables easily, without having to do each from 218.144* 218.145* etc etc Greetings Ralph -- gentoo-user@gentoo.org mailing list smime.p7s Description: S/MIME Cryptographic Signature
Re: [gentoo-user] iptables: block full ip-range
Wow, thanks Chris for the link I just asked my boss to explain it to me (without showing him your answer) and he manually worked it out to be exactly the same. The issue I have is binary etc ... it's still greek to me (I will try learn it soon though). Ok, now for the real n00b question :-) In which section did you work it out on that page (possibly a screenshot sent to my email if explaining is hard)? Thanks for the help, Greetings Ralph Chris Boot wrote: Hi, I found a nice IP address calculator at http://www.telusplanet.net/public/sparkman/netcalc.htm Using that, we get 218.144.0.0/12. HTH, Chris Ralph Slooten wrote: Hello fellow gentoo users, I run my own dedicated internet server from home with of course gentoo. What I have noticed, as probably many of you have, is that users from certain ISP's do daily attempts to relay mail, log into ssh etc etc ... Ok, so I'm pretty well secured as they don't even come close, but I'm still not happy. Most of these attempts come from kornet, as with most of my spam. What I would like to do is drop their whole entire ip-range with iptables... but how? I know how with a simple subnet, but some (they have several) of their ranges are given as: 218.144.0.0 - 218.159.255.255 Is there any way to add this range in iptables easily, without having to do each from 218.144* 218.145* etc etc Greetings Ralph -- gentoo-user@gentoo.org mailing list
Re: [gentoo-user] iptables: block full ip-range
Hi, I used the IP Address Converter section. I got the binary for the first IP (218.144.0.0), which is: 11011010 1001 Then for the second (218.159.255.255), which is 11011010 1001 Notice how the first 12 bits stay the same, and the last 12 change? 12 is the magic number in this case. :-) There should be an easier tool for this, but it does the trick. Chris Ralph Slooten wrote: Wow, thanks Chris for the link I just asked my boss to explain it to me (without showing him your answer) and he manually worked it out to be exactly the same. The issue I have is binary etc ... it's still greek to me (I will try learn it soon though). Ok, now for the real n00b question :-) In which section did you work it out on that page (possibly a screenshot sent to my email if explaining is hard)? Thanks for the help, Greetings Ralph Chris Boot wrote: Hi, I found a nice IP address calculator at http://www.telusplanet.net/public/sparkman/netcalc.htm Using that, we get 218.144.0.0/12. HTH, Chris Ralph Slooten wrote: Hello fellow gentoo users, I run my own dedicated internet server from home with of course gentoo. What I have noticed, as probably many of you have, is that users from certain ISP's do daily attempts to relay mail, log into ssh etc etc ... Ok, so I'm pretty well secured as they don't even come close, but I'm still not happy. Most of these attempts come from kornet, as with most of my spam. What I would like to do is drop their whole entire ip-range with iptables... but how? I know how with a simple subnet, but some (they have several) of their ranges are given as: 218.144.0.0 - 218.159.255.255 Is there any way to add this range in iptables easily, without having to do each from 218.144* 218.145* etc etc Greetings Ralph -- gentoo-user@gentoo.org mailing list smime.p7s Description: S/MIME Cryptographic Signature
Re: [gentoo-user] iptables: block full ip-range
Thanks Chris ... it's not all 100% clear now, but slowly understanding more. When I eventually get it I'll create a php script to do it for me *g*. Thanks again for your time. I did find this though: http://logi.cc/nw/NetBitCalc.html (using the netaddr option). Maybe it'll interest others too. Ralph Chris Boot wrote: Hi, I used the IP Address Converter section. I got the binary for the first IP (218.144.0.0), which is: 11011010 1001 Then for the second (218.159.255.255), which is 11011010 1001 Notice how the first 12 bits stay the same, and the last 12 change? 12 is the magic number in this case. :-) There should be an easier tool for this, but it does the trick. Chris -- gentoo-user@gentoo.org mailing list
