Yahoo Groups archive
Thread
2004-05-26 by manu@netbsd.org
Dan Hollis <goemon@...> wrote: > Is it possible to add wildcard support in the addr clause? > > E.g. > > addr *.someisp.com Not yet. The addr clause only works with netblocks. It's probably the next big feature to add. -- Emmanuel Dreyfus Il y a 10 sortes de personnes dans le monde: ceux qui comprennent le binaire et ceux qui ne le comprennent pas. manu@...
2004-05-26 by Dan Hollis
Is it possible to add wildcard support in the addr clause? E.g. addr *.someisp.com Adding some 100's of addr clauses to cover all the dialup IP blocks we have and that we outsource to is very time consuming and error prone. And yes, I realize this means reverse DNS has to be configured correctly. We can guarantee that, so it's not a problem. -Dan
2004-05-26 by manu@netbsd.org
Dan Hollis <goemon@...> wrote:
> Is it possible to add wildcard support in the addr clause?
>
> E.g.
>
> addr *.someisp.com
Yes, it is now possible to whitelist using DNS names. Use either
domain someisp.com
or
domain /.*\.someisp\.com$/
Depending what you want ("domain someisp.com" is a wide match: it will
catch any DNS name containing "someisp.com". The second syntax is a
regex.
Of course, that needs version 1.3.4 that was released a few minutes ago.
--
Emmanuel Dreyfus
Il y a 10 sortes de personnes dans le monde: ceux qui comprennent
le binaire et ceux qui ne le comprennent pas.
manu@...