Importing into rc.firewal rules
Poul-Henning Kamp
phk at phk.freebsd.dk
Sat Nov 20 12:09:07 PST 2004
In message <20041120133048.N7533 at zoraida.natserv.net>, Francisco Reyes writes:
>I have a grown list of IPs that I am "deny ip from ###.### to any".
>Infected machines, hackers, etc..
If the list is long it may be almost as good, if not better, to use
blackhole routes for it.
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the freebsd-security
mailing list