Welcome to WebmasterWorld Guest from 54.160.254.203

Forum Moderators: bakedjake

Message Too Old, No Replies

Banning entire isp

     
4:30 pm on Sep 18, 2005 (gmt 0)

New User

10+ Year Member

joined:Feb 12, 2003
posts:32
votes: 0


I am using apf firewall based on iptables. I need to temporarily ban an isp, the example given in the firewall config is :

24.202.11.0/24 (blocking 24.202.11.* I think)

but I need to ban 24.202.*.*

Does anyone have a rule to do this?

BTW this particular ip is just an example from the documentation.

12:40 am on Sept 19, 2005 (gmt 0)

Preferred Member

10+ Year Member

joined:Sept 6, 2004
posts:411
votes: 0


Have you considered using / do you have the facility to us... htaccess for this? (Are you running on an apache web server [webmasterworld.com]?)
12:56 am on Sept 19, 2005 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:July 1, 2002
posts:1421
votes: 0


24.202.0.0/16
4:59 pm on Sept 19, 2005 (gmt 0)

New User

10+ Year Member

joined:Feb 12, 2003
posts:32
votes: 0


Thanks I will try that, I am running apache but I think it's best just to ban from the entire server
5:04 pm on Sept 19, 2005 (gmt 0)

Preferred Member

10+ Year Member

joined:Aug 28, 2003
posts:366
votes: 0


I should add that a good place to learn about why you're now using /16 instead of /24 would be to learn about Subnetting [en.wikipedia.org]. It will save you some grief later, expecially if you're messing with firewall rules. :)

MM

10:06 pm on Sept 19, 2005 (gmt 0)

Junior Member

10+ Year Member

joined:Nov 29, 2004
posts:125
votes: 0


Please note that some ISPs have a tendecy to sue once you ban them.
2:15 am on Oct 5, 2005 (gmt 0)

Junior Member

10+ Year Member

joined:July 28, 2003
posts:188
votes: 0


AbsintheSyringe,

Can you point us to a concrete example of that?

I've been in the Internet industry for quite a while and have never heard of an ISP suing anyone because they were blocked by their firewall rules unless there was some sort of pre-existing contractual relationship where they had agreed to pass traffic for them.

Obviously they wouldn't have a legal leg to stand on, somehow trying to force someone into allowing their packets on the other persons server or network.

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members