Can the IP Blacklist have CIDR entries?

BrandywineITS · Post by **BrandywineITS** » Sun Jul 23, 2006 5:58 am

Can anyone tell me if the IP blacklist (SMTP-Deny.tab) can contain CIDR addresses as well as the astericked-wildcarded single IP's?

As an example, say eBay was providing hosting for spammers. (mind you they ARE NOT and this is only used as an example)

That host (eBay in this example) owns the NetRange: 216.113.160.0 - 216.113.191.255, which makes their CIDR: 216.113.160.0/19.

I want to block the entire ISP's range of IP addresses. But to do this I would have to have 32 entries in the list. (i.e. 216.113.160.* to 216.113.191.*

My question is can we put 216.113.160.0/19 in the SMTP-deny.tab blacklist file, or can it only contain single and wildcarded ip's and ranges? The software currently accepts an input like that, but does it work as intended?

If we cannot, perhaps this is a good recomendation for the ME coders to implement in the next revision.

BrandywineITS · Post by **BrandywineITS** » Sun Jul 30, 2006 3:47 am

Nobody has an answer for this?

janitor · Post by **janitor** » Sun Jul 30, 2006 2:21 pm

I dont know if ME can do this. But instead of using SMTP-Deny.tab, windows 2000/3 server itself support IPSec to stop those IPs at port 25 (CIRD or wildcard IPs).