Michael Drons wrote: > Anyone have an easy way to deny CIDR blocks? For example I would like to > deny all CIDR blocks that are from RIPE, LACNIC, APNIC, etc. Or maybe an > easier way is I only want to permit CIDR blocks from ARIN for a specific > service, for example SSH. Is this easy to do with vuurmuur?
There is no easy way to do this right now. Adi and I have been talking about adding 'blocklist 2.0' and I think this would be a nice addition to it. Meanwhile I think you can using the custom chain feature in Vuurmuur. This setups up a custom iptables chain where you can put your own block rules. Vuurmuur can set the chain up for you, but you need to fill it with the iptables rules you need. Hope this helps, Victor > > Thanks, Mike > > > > > ____________________________________________________________________________________ > Be a better friend, newshound, and > know-it-all with Yahoo! Mobile. Try it now. > http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ > > ------------------------------------------------------------------------- > This SF.net email is sponsored by the 2008 JavaOne(SM) Conference > Don't miss this year's exciting event. There's still time to save $100. > Use priority code J8TL2D2. > http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone > _______________________________________________ > Vuurmuur-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/vuurmuur-users ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Vuurmuur-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/vuurmuur-users
