linux user group brescia
immagine del castello

Archivio della mailing list

IP privato o no?

GiulioMaria Fontana giuliomaria.fontana a sinapsi.com
Ven 25 Gen 2002 13:57:34 UTC 
mail.tbwa.it
80.16.48.117

Secondo uno script firewall che ho trovato (e che ho usato come base per il 
mio firewall) gli indirizzi 80.0.0.0/4 sono riservati o comunque non 
utilizzabili.
Eppure una mia collega mi ha detto che aveva problemi con la posta e ho 
trovato questo ip filtrato dal firewall.
Chi stà sbagliando?

Giulio

Ah...le regole sono queste:

# refuse addresses defined as reserved by the IANA
# 1.*.*.*, 2.*.*.*, 5.*.*.*, 7.*.*.*, 23.*.*.*, 27.*.*.*
# 31.*.*.*, 36.*.*.*, 37.*.*.*, 39.*.*.*, 41.*.*.*, 42.*.*.*
# 49-50.*.*.*, 58-60.*.*.*
# 67-127.*.*.*
# 169.254.0.0/16      - Link Local Networks
# 192.0.2.0/24        - TEST-NET
# 197.*.*.*, 217-255.*.*.*

# 0.*.*.*             - Can't be blocked for DHCP users.
ipchains -A input -i $EXTERNAL_INTERFACE -s 0.0.0.0/8 -j DENY -l

ipchains -A input -i $EXTERNAL_INTERFACE -s 1.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 2.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 5.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 7.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 23.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 27.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 31.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 36.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 37.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 39.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 41.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 42.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 49.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 50.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 58.0.0.0/7 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 60.0.0.0/8 -j DENY -l

ipchains -A input -i $EXTERNAL_INTERFACE -s 67.0.0.0/8 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 68.0.0.0/6 -j DENY -l
ipchains -A input -i $EXTERNAL_INTERFACE -s 72.0.0.0/5 -j DENY -l
#ipchains -A input -i $EXTERNAL_INTERFACE -s 80.0.0.0/4 -j DENY -l

-- 
_____________________________________________________________
Fontana GiulioMaria
System Administrator
Sinapsi Spa
Viale Bligny 27, 20136 Milan, Italy, Phone (+39) 02 582095.33

Maggiori informazioni sulla lista Lug