On Mon, 2004-03-08 at 08:32, Todd T. Fries wrote: > $ sudo ftp http://www.completewhois.com/bogons/data/bogons-cidr-all.txt > [..] > $ grep bogons /etc/pf.conf > # List of all bogons (ips not allocated) for entire IPv4 ip space > table <bogons> persist file "/etc/bogons-cidr-all.txt" > block in quick on $ext_if from <bogons> to any > block out quick on $ext_if from any to <bogons> > $ head -15 /etc/bogons-cidr-all.txt > ... > 0.0.0.0/7 > $ >
Along those lines, I created a shell script a while back to place in cron to update my bogon table once a week (I use the bogon list from Cymru. I know the style is horrible, and it really should be using mktemp... I haven't had the time to rewrite it. Feel free to improve on my methods. http://www.smtps.net/project-docs/bogon.sh BTW I wrote a script to update it because IANA does periodicly reclaim and/or release IP blocks to regional registrars. -- Brian Keefer, CISSP Systems Engineer CipherTrust Inc, www.CipherTrust.com
