How to block IP range
Spenst, Aleksej
Aleksej.Spenst at harman.com
Mon Oct 27 16:18:46 UTC 2014
Hi All,
Is there any syntax to block a certain IP range?
For example, I need to block only 100 IPs in the range: 10.0.0.1-10.0.0.100
I can't use the netmask like "block on eth0 from 10.0.0/24" since this will block 256 addresses.
I don't want also to write all IPs separated by comma like "block on eth0 from {10.0.0.1,10.0.0.2,.....}" since this will generate 100 separate rules (and this is also a very long rule).
Are there any other ways?
Thank you!
Aleksej.
More information about the freebsd-pf
mailing list