amazonaws
Michael Sierchio
kudzu at tenebras.com
Wed Aug 7 01:43:07 UTC 2019
On Tue, Aug 6, 2019 at 6:23 PM Rodney W. Grimes <
freebsd-rwg at gndrsh.dnsmgr.net> wrote:
> > Hi!
> >
> > Is it possible to bl;ock compute.amazonasws.com with ipfw firewall. I
> > have a table with many amazonasws IPs but every time when I start
> > Firefox it shows the new one (I am checkong with tcpdump).
>
> Since it is almost impossible to keep up with the IP's....
>
This is not even remotely true.
https://ip-ranges.amazonaws.com/ip-ranges.json
is kept up-to-date, and you can subscribe to an SNS topic to be notified of
changes:
arn:aws:sns:us-east-1:806199016981:AmazonIpSpaceChanged
You could put the entire contents, or a portion of it, in an ipfw table and
swap tables atomically upon change.
--
"Well," Brahmā said, "even after ten thousand explanations, a fool is no
wiser, but an intelligent person requires only two thousand five hundred."
- The Mahābhārata
More information about the freebsd-ipfw
mailing list