> On Dec 30, 2025, at 10:56, Greg Troxel <[email protected]> wrote: > > I typed 'man blacklistd' and then 'man blacklistd.conf' on a NetBSD 9 > system. On NetBSD 10 is blocklist and seems a little more detailed. > Same on NetBSD 11.
OK, I had forgotten about the name change. > >>> [remote] >>> 0.0.0.0/0 stream tcp * =/24 = = >>> #[0::0]/0 stream tcp * =/64 = = > > This is in /usr/share/examples/blacklistd/blacklistd.conf on 9 but the > newer examples have dropped the v6 example and are generally more > confusing. I would have expected those files to come from https://cvsweb.netbsd.org/bsdweb.cgi/src/external/bsd/blacklist/ or more recently blocklist, but I still cannot find anything like that in either place. I wonder where the files come from. > >> This clears things up a lot. Unless I missed something, perhaps this should >> be added to the cvs tree. > > I think it's just a question of clarifying the examples and adding back > a :: => 64 line. Yes, that would be a big help. (Once we know where the files are. :) > I think it is prudent. I just meant that after you experience it for a > while, I am curious what you see. Thanks for clarifying. I’ll let it run and see what happens. I mainly wanted to be sure that I understood how the ipv6 addresses where being handled / blocked. Your notes help a lot. Cheers, Brook
