[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] host.deny block range of IP

Subject: Re: [cobalt-users] host.deny block range of IP
From: flash22@xxxxxxx
Date: Fri Feb 16 00:47:58 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Fri, 16 Feb 2001, Gerald Waugh wrote:

>  <flash22@xxxxxxx>  wrote
> 
> > 2 out of 3 ?  
> > 
> > 203-202=1 ;)
> > 
> > you want 
> > 
> > 202.0.0.0/254.0.0.0
> > 
> > Fortunatly the starting address is even, you can of course split the
> > addresses up and make 2 entries when necessary....
>  
> but wouldn't that deny 201.0.0.0 addresses!
> 

201 = 11001001
254 = 11111110
and = 11001000

The test is that (address AND netmask) == address

since 11001000 != 11001001 , it fails and doesn't reject

but

202 = 11001010
254 = 11111110
and = 11001010  which is == so it rejects 

and at the top limit..

203 = 11001011
254 = 11111110
and = 11001010 == address (202) so is rejected

above limit

204 = 11001100
254 = 11111110
and = 11001100 not =  202 so not rejected

helps?

Prev by Date: [cobalt-users] Hacker Found
Next by Date: Re: [cobalt-users] Reset serial Numbers in DNS to 1??
Previous by thread: Re: [cobalt-users] host.deny block range of IP
Next by thread: [cobalt-users] sendmail "forward" error

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index