adm and address blocking
Bill Mullen
moon at lunarhub.com
Tue Sep 16 18:03:42 EDT 2003
On Tue, 16 Sep 2003, Thomas M. Albright wrote:
> Additionally, i've been getting attacked from ipt.aol.com. They own the
> address range from 172.128.0.0 - 172.211.255.255 What would be the
> netmask to block a range like that? 172.128.0.0/8 would block the entire
> class B, right?
172.128.0.0/8 would select the entire class A, and would be essentially
the same as 172.0.0.0/8, AFAICT - the mask is 8 bits long, encompassing
therefore the first number in "dotted-quad" notation. A B network would
have a 16-bit netmask.
The range you describe is actually comprised of an amalgam of subnets of
the 172.0.0.0 network, and in order to block exactly those addresses (and
not inadvertently block any others, due to an overly-broad specification),
you'll need to separate them out and block them individually.
Network/Mask Range
172.128.0.0/10 172.128.0.0-172.191.255.255
172.192.0.0/12 172.192.0.0-172.207.288.255
172.208.0.0/14 172.208.0.0-172.211.255.255
HTH!
--
Bill Mullen moon at lunarhub.com MA, USA RLU # 270075 MDK 8.1 & 9.0
"Computers make it easier to do a lot of things, but most of the things
they make it easier to do don't need to be done." - Andy Rooney
More information about the gnhlug-discuss
mailing list