Mercurial > mbse-firewall / annotate
etc/blocklist4.conf.example@92045b0e8e17 (annotated)
etc/blocklist4.conf.example
Thu, 18 Dec 2014 16:56:55 +0100
- author
- Michiel Broek <mbroek@mbse.eu>
- date
- Thu, 18 Dec 2014 16:56:55 +0100
- changeset 4
- 92045b0e8e17
- parent 0
- d4d23e51be4f
- permissions
- -rw-r--r--
ipset now adds the hostname to the blocklists so that the firewall scripts works on hosts and Linux Container clients without conflicts. The ipset tables are visible on the host and in the lxc clients. Then, silently drop icmpv6 router sollicitaion and neighbour sollicitation messages that come in with the hoplimit field not set to 255. Some Windows systems do this. Version 0.0.16
| 0 | 1 | # /etc/mbse-firewall/conf.d/blocklist4.conf |
| 2 | # | |
| 3 | # List with blocked IP's. Syntax can be networks in CIDR notation or plain | |
| 4 | # IPv4 addresses. For example: | |
| 5 | # | |
| 6 | # 1.2.3.4 a plain IPv4 address | |
| 7 | # 5.6.7.0/24 a IPv4 network. | |
| 8 | # | |
| 9 | # This file is loaded with the following commands: install or reload. | |
| 10 | # Comments begin with a # and can be placed behind entries too. | |
| 11 | # | |
| 12 | 1.2.3.4 | |
| 13 | 5.6.7.0/24 | |
| 14 | 3.4.5.0/17 # Real bad network |
