l i n u x - u s e r s - g r o u p - o f - d a v i s
L U G O D
 
Next Meeting:
August 5: Social gathering
Next Installfest:
TBD
Latest News:
Jul. 4: July, August and September: Security, Photography and Programming for Kids
Page last updated:
2001 Dec 30 16:57

The following is an archive of a post made to our 'vox-tech mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox-tech] ipchains/firewall question
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox-tech] ipchains/firewall question


  • Subject: Re: [vox-tech] ipchains/firewall question
  • From: Micah Cowan <mMAPSicah@cowanbox.com>
  • Date: Wed, 18 Oct 2000 12:01:15 -0700
  • References: Pine.LNX.4.21.0010181152410.2823-100000@satan

On Wed, Oct 18, 2000 at 11:59:56AM -0700, Peter Jay Salzman wrote:
> i'm writing some ipchains rules for our cluster.  since a mistake would mean
> bringing the cluster down to a halt and interrupting programs that have been
> running for weeks, i just want to make sure everything is ok before i
> implement it.  can't have too many eyes.
> 

snip...

> ipchains -A input -s 192.0.0.0/255.0.0.0 -i eth0 -j DENY
> 
> i think this is right, but the consequences of it being wrong are pretty
> harsh.  anyone see anything wrong?

Looks good to me...

> when you have an ip address like 192.0.0.0, does that automatically imply a
> netmask of 255.0.0.0?   (i was wondering about this for the tcp wrappers as
> well).

Well, sorta-kinda.  But I don't believe IPCHAINS sees it that way
(I'm fairly certain I've made the mistake of not specifying the netmask
for just such an address, only to have it break on me)

> 
> thanks!
> pete

-MC


LinkedIn
LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
facebook
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Sunset Systems
Who graciously hosts our website & mailing lists!