address specified as 1.2.3.4/24{128,35-55,89} Is this Correct
????
zk
zk at wspim.edu.pl
Sat Dec 27 03:55:58 PST 2003
On Wed, Dec 24, 2003 at 02:09:12PM +1000, Robert Chalmers wrote:
> The man page gives this example, however, when I attempt to use it, it seems
> to block the whole set?
>
> Could someone tell me what's going wrong here please. Thanks heaps..
>
> This works,
> ${fwcmd} add deny log all from any to 203.1.96.1 in via ${oif}
>
> This blocks the whole IP block, not just the list?
> ${fwcmd} add deny log all from any to 203.1.96.0/24{2,6-25,27-154,156-19 9,204-254} in via ${oif}
>
Do you use ipfw2?
It's not default on FreeBSD 4.x systems.
And maybe you should quote {}
${fwcmd} add deny log all from any to '203.1.96.0/24{2,6-25,27-154,156-199,204-254}' (...)
zk
More information about the freebsd-security
mailing list