How to block a range of IP's with system-config-securitylevel-tui?
Alexander Dalloz
ad+lists at uni-x.org
Wed Nov 24 12:00:23 UTC 2004
Am Mi, den 24.11.2004 schrieb Vinicius um 12:47:
> how to block a range of IP's with system-config-securitylevel-tui,
> please?
>
> TIA, Vinicius.
>
> ______________________________________________________________________
This is not supported by the tool.
You could manually add something like this to the netfilter
configuration using iptables:
iptables -I INPUT -i $YOUR_INPUT_INTERFACE -p tcp -m tcp -s $IP/$NET -j
REJECT --reject-with icmp-port-unreachable
"service iptables save" will store the changed setup in
/etc/sysconfig/iptables. The range in the example above is made by the
CIDR notation, like 192.168.0.0/24 for 192.168.0.0-192.168.0.255.
Alexander
--
Alexander Dalloz | Enger, Germany | new address - new key: 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora GNU/Linux Core 2 (Tettnang) on Athlon kernel 2.6.9-1.6_FC2smp
Serendipity 12:59:31 up 4 days, 7:47, load average: 0.23, 0.35, 0.28
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20041124/9e6f9442/attachment-0001.sig>
More information about the fedora-list
mailing list