Rick Stevens wrote:
I have. It's a nightmare, but unfortunately many Asian ISPs use it to
spam. Makes your iptables and firewall rules rather nasty.
I'm not sure about 'nasty' more so than 'long'. Take for example
the entire Korea network. When the request came down to block it, this
is what came up when I looked up their range:
> netmask -s 222.96.0.0:222.122.255.255
222.96.0.0/255.240.0.0
222.112.0.0/255.248.0.0
222.120.0.0/255.254.0.0
222.122.0.0/255.255.0.0
That meant adding 4 lines to our router's access file. A file
that's rather large as it is.
--
W | It's not a bug - it's an undocumented feature.
+--------------------------------------------------------------------
Ashley M. Kirchner <mailto:ashley@xxxxxxxxxx> . 303.442.6410 x130
IT Director / SysAdmin / Websmith . 800.441.3873 x130
Photo Craft Imaging . 3550 Arapahoe Ave. #6
http://www.pcraft.com ..... . . . Boulder, CO 80303, U.S.A.
