Simplest way to deny access to a class C

Gary Gatten Ggatten at
Thu Mar 3 17:08:33 UTC 2011

Adding null routes to the address space in question will prevent comms, but it won't stop traffic getting to you and then perhaps being logged.

Some sort of firewall with a policy that denies them without logging?

----- Original Message -----
From: Jorge Biquez [mailto:jbiquez at]
Sent: Thursday, March 03, 2011 10:59 AM
To: freebsd-questions at <freebsd-questions at>
Subject: Simplest way to deny access to a class C

Hello all.

I am sorry in advance if this question sounds too stupid.

I have a small server for personal use of webpages running:


it is working fine , no problem very stable.

I just need to block some IP class C address that are always trying 
to "discover" directories or applications under the web server. They 
do not do and can not do anything since this server has nothing 
installed but i am tired of seeing in the logs all the intents they 
do every 2-3 seconds.

I have not installed any kind of firewall yet.
What do you think is the best way to accomplish this task? If 
possible the easiest one. I do not want to do anything else but just 
bloc IP's, at this moment at least.

Thanks in advance.

Jorge Biquez

freebsd-questions at mailing list
To unsubscribe, send any mail to "freebsd-questions-unsubscribe at"

<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
"This email is intended to be reviewed by only the intended recipient
 and may contain information that is privileged and/or confidential.
 If you are not the intended recipient, you are hereby notified that
 any review, use, dissemination, disclosure or copying of this email
 and its attachments, if any, is strictly prohibited.  If you have
 received this email in error, please immediately notify the sender by
 return email and delete this email from your system."

More information about the freebsd-questions mailing list