I have the following iptables rule:
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I have the following iptables rule:
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
On Thu, 01 Apr 2021 15:32:46 -0400, John Smith <12345@whatismyemailaddress.xyz> wrote:
I have the following iptables rule:
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
$ ipcalc -i 11.12.22.0/19
On Thu, 01 Apr 2021 19:32:46 +0000, John Smith wrote:
I have the following iptables rule:
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I am aware of the --src-range option to iptables - no need to
bring it up.
On 02/04/2021 07.38, David W. Hodgins wrote:
On Thu, 01 Apr 2021 15:32:46 -0400, John Smith
<12345@whatismyemailaddress.xyz> wrote:
I have the following iptables rule:$ ipcalc -i 11.12.22.0/19
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I didn't know this tool, I just installed it. But:
cer@Telcontar:~> ipcalc -i 11.12.22.0/19
Unknown option: -i
I have Version 0.41
11.12.22/19
On Fri, 02 Apr 2021 08:49:07 -0400, Carlos E.R.
<robin_listas@es.invalid> wrote:
On 02/04/2021 07.38, David W. Hodgins wrote:
On Thu, 01 Apr 2021 15:32:46 -0400, John Smith
<12345@whatismyemailaddress.xyz> wrote:
I have the following iptables rule:$ ipcalc -i 11.12.22.0/19
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j >>>> DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I didn't know this tool, I just installed it. But:
cer@Telcontar:~> ipcalc -i 11.12.22.0/19
Unknown option: -i
I have Version 0.41
Mageia 7 has ...
$ ipcalc -v
ipcalc 0.2.0
On Mageia 8, which also has it working with -i ...
$ ipcalc -v
ipcalc 1.0.0
On 02/04/2021 19.14, David W. Hodgins wrote:
On Fri, 02 Apr 2021 08:49:07 -0400, Carlos E.R.
<robin_listas@es.invalid> wrote:
On 02/04/2021 07.38, David W. Hodgins wrote:
On Thu, 01 Apr 2021 15:32:46 -0400, John Smith
<12345@whatismyemailaddress.xyz> wrote:
I have the following iptables rule:$ ipcalc -i 11.12.22.0/19
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j
DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I didn't know this tool, I just installed it. But:
cer@Telcontar:~> ipcalc -i 11.12.22.0/19
Unknown option: -i
I have Version 0.41
Mageia 7 has ...
$ ipcalc -v
ipcalc 0.2.0
On Mageia 8, which also has it working with -i ...
$ ipcalc -v
ipcalc 1.0.0
Where did they got version 1 from? It is not on the official site:
http://jodies.de/ipcalc-archive/
Could you look at the package information to see if they mention another
URL, please?
Could be <https://github.com/nmav/ipcalc>, but they mention version
0.2.3... Ah, it is <https://gitlab.com/ipcalc/ipcalc>, that's 1.0.0
On Fri, 02 Apr 2021 16:42:49 -0400, Carlos E.R. <robin_listas@es.invalid> wrote:
On 02/04/2021 19.14, David W. Hodgins wrote:
On Fri, 02 Apr 2021 08:49:07 -0400, Carlos E.R. <robin_listas@es.invalid> wrote:
On 02/04/2021 07.38, David W. Hodgins wrote:
On Thu, 01 Apr 2021 15:32:46 -0400, John Smith <12345@whatismyemailaddress.xyz> wrote:
I have the following iptables rule:$ ipcalc -i 11.12.22.0/19
iptables -A INPUT -p tcp -s 11.12.22/19 --dport 1234 -i eth0 -j >>>>>> DROP
With this rule, what IP addresses will be blocked when trying to
establish a TCP connection on port 1234?
I didn't know this tool, I just installed it. But:
cer@Telcontar:~> ipcalc -i 11.12.22.0/19
Unknown option: -i
I have Version 0.41
Mageia 7 has ...
$ ipcalc -v
ipcalc 0.2.0
On Mageia 8, which also has it working with -i ...
$ ipcalc -v
ipcalc 1.0.0
Where did they got version 1 from? It is not on the official site:
http://jodies.de/ipcalc-archive/
Could you look at the package information to see if they mention another
URL, please?
Could be <https://github.com/nmav/ipcalc>, but they mention version
0.2.3... Ah, it is <https://gitlab.com/ipcalc/ipcalc>, that's 1.0.0
Correct. On Mageia 7 ...
$ rpm -q -i ipcalc|grep ^URL
URL : https://github.com/nmav/ipcalc
On Mageia 8 ...
$ rpm -q -i ipcalc|grep ^URL
URL : https://gitlab.com/ipcalc/ipcalc
Regards, Dave Hodgins
netcalc is an IP network calculator that can calcuate host IP ranges, subnet masks, and split networks. It is a clone of sipcalc and uses the output format
of ipcalc.
Distribution: network:utilities / openSUSE_Leap_15.2
cer@Telcontar:~>
John Smith <12345@whatismyemailaddress.xyz> wrote:...
11.12.22/19
Don't do this. It's ambiguous. iptables will expand 11.12.22/19 to 11.12.22.0/19 and then apply the netmask, yielding 11.12.0.0/19:
Other tools will expand 11.12.22 to 11.12.0.22:
|[10/6158]mh@drop:~ $ ping 11.12.22
|PING 11.12.22 (11.12.0.22) 56(84) bytes of data.
On Fri, 2021-04-02, Marc Haber wrote:
John Smith <12345@whatismyemailaddress.xyz> wrote:...
11.12.22/19
Don't do this. It's ambiguous. iptables will expand 11.12.22/19 to
11.12.22.0/19 and then apply the netmask, yielding 11.12.0.0/19:
Other tools will expand 11.12.22 to 11.12.0.22:
|[10/6158]mh@drop:~ $ ping 11.12.22
|PING 11.12.22 (11.12.0.22) 56(84) bytes of data.
That's an example with an IPv4 address; it doesn't prove that omitting
the useless octets of an IPv4 network is ambiguous.
You may be right, but I'd like to see more evidence. I write things
like 10/8 and 192.168.1/24 all the time, but I can't easily supply any >evidence /that/ is correct.
Sysop: | Keyop |
---|---|
Location: | Huddersfield, West Yorkshire, UK |
Users: | 293 |
Nodes: | 16 (2 / 14) |
Uptime: | 214:23:23 |
Calls: | 6,619 |
Calls today: | 1 |
Files: | 12,168 |
Messages: | 5,317,486 |