-
chenull
- Junior Member
- Posts: 3
- Joined: 17 Jan 2007, 20:24
Post
by chenull »
Hi,
I tried to blocked any incoming packet with destination port 22, with source IP is not 202.0.0.0/8. i've tried to insert:
tcp:in:d=22:s=!202.0.0.0/8
but it doesnt work
or i just missconfigured it ?
If it's not been supported yet, could you add this kind of notation (negating an address) ?
TIA
great work!
-
chirpy
- Moderator
- Posts: 3537
- Joined: 09 Dec 2006, 18:13
Post
by chirpy »
chenull wrote:but it doesnt work
or i just missconfigured it ?
It won't work - there's no such functionality in the advanced port blocking.
-
spellinn
- Junior Member
- Posts: 11
- Joined: 12 Mar 2007, 11:56
Post
by spellinn »
But that doesn't mean what you are trying to do can't be done right?
I would of thought the same thing could be done by using two rules, one to block all incoming port 22 from *, then allowing it from your IP?
Cheers,
Neil