I have a Cisco 871 router with IOS 12.4 installed. I'm using SDM 2.5 to do most of my configuration. I want to set up the firewall capability to block incoming connections to my website from anywhere other than the United States.
Does anyone know a quick, easy way to write the firewall rules for this so I don't have to have an over long list of rules?
Thanks
You are talking about a very large number of IP address.
I was hoping someone would know a faster way than that. I knew about all the lists you pointed out, I was just trying to limit the number of firewall rules I needed.
Artie Lange wrote:
Nothing I am aware of, sorry.
Thanks for your time.
WM
Artie Lange wrote:
Maybe a starting point - there exists a DNSBL (DNS blocklist) - whether a given IP address resides in a given country - see
dig 76.37.113.24.zz.countries.nerd.dk any
which returns:
;; ANSWER SECTION:
76.37.113.24.zz.countries.nerd.dk. 2100 IN TXT "us" 76.37.113.24.zz.countries.nerd.dk. 2100 IN A 127.0.3.72Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.