**>From: "Carel, Michael P. (Digitel-GSM)" <[EMAIL PROTECTED]> **>To: users@kannel.org **>Subject: box deny ip **>Date: Tue, 22 Feb 2005 12:45:34 +0800 **> **>Hi, **> **>Im limiting my server wap connection to certain IP's, I used to set my **>kannel.config as: **> **> **>group = core **>admin-port = 13000 **>wapbox-port = 13002 **>admin-password = bar **>#status-password = foo **>admin-allow-ip = "192.168.5.1;127.0.0.1" **>wdp-interface-name = "*" **>log-file = "/var/log/kannel/bearerbox.log" **>log-level = 1 **>box-deny-ip = "10.*.*.*" **>box-allow-ip = "192.168.5.1" **>udp-allow-ip = "192.168.5.1" **>access-log = "/var/log/kannel/access.log" **> **>group = wapbox **>bearerbox-host = localhost **>log-file = "/var/log/kannel/wapbox.log" **>log-level = 1 **>syslog-level = none **>access-log = "/var/log/kannel/wapaccess.log" **> **> **>I'm blocking all 10.0.0.0 networks to use the wap gateway... But still this **>IP can continue to connect and successfully browse thru the gateway.. Any **>idea why? Do I miss something?
It a peculiarity of the gateway/gwlib/util.c:is_allowed_ip() function. You MUST set a deny list as well as an allow list. Configure your udp-deny-ip = "*.*.*.*" and the filtering will work. I'll add this to my update of the Kannel userguide. See ya... d.c.
