On Oct 21, 2007, at 2:08 PM, Cameron Knowlton wrote:
add deny log tcp from 184.108.40.206 - 220.127.116.11 to any dst-port
add deny log tcp from 18.104.22.168-22.214.171.124 to any dst-port 25 in
Does not seem to work.
Correct, because neither one of those follows the example of using
a range you yourself already provided. Re-read the example of a
range you provided above. See how you specified a range for
126.96.36.199 to 188.8.131.52? That used a CIDR block. Additionally
you can use a netmask. See the docs.
Note, that since the above range you're trying to deny isn't
expressible using a single netmask. That leads me to question if
indeed that's really the range you wanted since you're not
describing a network anyway. If indeed it is the range you wanted,
break it down into two (or more) CIDR blocks according to the
networks you're trying to represent.
Good call, Dan.
Steve at al, here's a handy little CIDR calculator, I've used this
a lot for configuring Postfix blocks:
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden