On 08Oct2006 18:20, ibnerazi <[EMAIL PROTECTED]> wrote:
| acl mynet src 10.0.0.0/8
| http_access allow mynet
|
| now I wana block some machines, i.e from 10.0.0.13 to 10.0.0.43
After the "acl" line, add:
acl blocknet src 10.0.0.13
acl blocknet src 10.0.0.14
... repeat these lines until ...
acl blocknet src 10.0.0.43
Then _before_ the "http_access allow mynet" insert:
http_access deny blocknet
There may be a shorter way to define the "blocknet" ACL - typically
people want to block a few individual IPs or a whole subnet, each of
which is easy. A lone, but arbitrary, range may not be, thus my "one
line per IP" approach.
Cheers,
--
If all around you is darkness and you feel you're contending in vain,
then the light at the end of the tunnel is the front of an oncoming train.
To unsubscribe from this list, please email [EMAIL PROTECTED] & you will be
removed.
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/LINUX_Newbies/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http://groups.yahoo.com/group/LINUX_Newbies/join
(Yahoo! ID required)
<*> To change settings via email:
mailto:[EMAIL PROTECTED]
mailto:[EMAIL PROTECTED]
<*> To unsubscribe from this group, send an email to:
[EMAIL PROTECTED]
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
