[BC] IP address blocking
Craig Healy
craig.healy at hotmail.com
Thu May 15 18:38:42 CDT 2008
> Well, although there are IP's in use by Chinese, there are no Chinese
IP's.
>
> HOWEVER, how you block a range depends entirely on your firewall, what
> it's capable of, and what it's not capable of.
> Some will, some won't, and some can be made to by port-forwarding all
> ports to the bit-bucket.
>
> What's the firewall ?
Considering the Sonicwall TZ180 or TZ190, depending if the want a WiFi
connection or not. The client has both a Cox static IP business connection
and a dynamic IP Verizon DSL for backup. The OPT port will do failover.
The sales guy has simply ignored any questions about blocking IP addresses.
In this application they do need some ports forwarded to various machines.
The idea also is to block outbound connections to the forbidden addresses,
not just inbound. They want to protect their employees from malware links
and the like.
Craig Healy
Providence, RI
More information about the Broadcast
mailing list