ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

Negating IP in csf.deny

https://mail.forum.configserver.com/viewtopic.php?t=189

Page 1 of 1

Negating IP in csf.deny

Posted: 17 Jan 2007, 20:32
by chenull
Hi,

I tried to blocked any incoming packet with destination port 22, with source IP is not 202.0.0.0/8. i've tried to insert:
tcp:in:d=22:s=!202.0.0.0/8

but it doesnt work :D or i just missconfigured it ?

If it's not been supported yet, could you add this kind of notation (negating an address) ?

TIA

great work!

Posted: 18 Jan 2007, 22:14
by chirpy
chenull wrote:but it doesnt work :D or i just missconfigured it ?
It won't work - there's no such functionality in the advanced port blocking.

Posted: 12 Mar 2007, 12:13
by spellinn
But that doesn't mean what you are trying to do can't be done right?

I would of thought the same thing could be done by using two rules, one to block all incoming port 22 from *, then allowing it from your IP?

Cheers,


Neil
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited