Mercurial > mbse-firewall / file revision

• file
• latest
• revisions
• annotate
• diff
• comparison
• raw

etc/blocklist4.conf.example@92045b0e8e17

etc/blocklist4.conf.example

Thu, 18 Dec 2014 16:56:55 +0100

author

Michiel Broek <mbroek@mbse.eu>

date

Thu, 18 Dec 2014 16:56:55 +0100

changeset 4

92045b0e8e17

parent 0

d4d23e51be4f

permissions

-rw-r--r--

ipset now adds the hostname to the blocklists so that the firewall scripts works on hosts and Linux Container clients without conflicts. The ipset tables are visible on the host and in the lxc clients. Then, silently drop icmpv6 router sollicitaion and neighbour sollicitation messages that come in with the hoplimit field not set to 255. Some Windows systems do this. Version 0.0.16

# /etc/mbse-firewall/conf.d/blocklist4.conf
#
# List with blocked IP's. Syntax can be networks in CIDR notation or plain
# IPv4 addresses. For example:
#
# 1.2.3.4	a plain IPv4 address
# 5.6.7.0/24	a IPv4 network.
#
# This file is loaded with the following commands: install or reload.
# Comments begin with a # and can be placed behind entries too.
#
1.2.3.4
5.6.7.0/24
3.4.5.0/17	# Real bad network