But isn't that what he's trying to do or did I misread it? He wants to deny everything on the block list (i.e. the one IP) and allow everything else. ________________________________________ From: Eric Covener [covener@xxxxxxxxx] Sent: Friday, March 13, 2015 4:44 PM To: users@xxxxxxxxxxxxxxxx Subject: Re: ESTABLISHED connections On Fri, Mar 13, 2015 at 7:21 PM, Gary Smith <Gary.Smith@xxxxxxxxxxxxx> wrote: > Order deny,allow > > Allow from all > deny from 111.10.250.188 "deny,allow" means deny directives are processed before allow directives. So this is clearly wrong. 95% of the time, if the order in the config differs from the order in the Order directive itself, it's probably worth a second look. -- Eric Covener covener@xxxxxxxxx --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|