Subj : Re: IP Block
To   : Brian Rogers
From : Wilfred van Velzen
Date : Tue May 11 2021 06:21 pm

* Originally in BINKD
* Crossposted in INTERNET
* Crossposted in TCPIP

Hi Brian,

On 2021-05-11 11:11:00, you wrote to Dumas Walker:

DW>> How would you format it if you want to drop a whole range or block of
DW>> IP addresses?

BR> I made a utilty for myself which I call "ipblock". It handles whatever
BR> string I wish to enter whether it's IPv4 or IPv6, a single IP or a block.
BR> It writes to a file called /etc/blocked.ips which is then called upon
BR> bootup as part of my firewalling. In doing a whole block enter in the cidr
BR> shorthand. Ex:
BR> /sbin/iptables -I INPUT -s 49.7.0.0/16 -j ROP
BR> /sbin/iptables -I OUTPUT -d 49.7.0.0/16 -j DROP
BR> /sbin/iptables -I FORWARD -s 49.7.0.0/16 -j DROP

BR> This filters a scanbot block from my box. :)

BR> Further questions, feel free to netmail me as this really isn't Bink
BR> information. I'll be  happy to try and answer.

Or take it to the INTERNET and/or TCPIP areas, so we can all learn! ;)

BR> You can also add logging and such if you desire. I don't feel that if
BR> I'm denying a block that I need to see my work did the job I
BR> programmed it to do though.


Bye, Wilfred.

--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)