similar to: Range of IP addresses in "allow hosts"?

I've been having a problem with Win95 clients watching a printer queue on the Samba server (called labserv2). labserv2 is a Solaris 2.5.1 machine running samba 1.9.18p4. The printing system is LPRng 3.4.2. A user can watch the printer queue from a Win95 client machine. However, when the printer queue gets backed up (usually about 12 jobs), the queue window locks. The corresponding smbd

how would i put the following into smb.conf in a shorthand format host allow all ip's from 192.168.0.151 to 192.168.0.185 but non outside this range without putting them all in separately, is it host allow 192.168.0.151 - 192.168.0.185 ? Many thanks Ken

Hi, I ran across a case in which my server maintenance was simplified by using SSHD configuration options like this in sshd_config: AllowGroups admin at 192.168.0.* sshuser in much the same fashion as (Allow|Deny)Users. In this case, the goal is to provide access to administrators only from the local network, while allowing SSH users to login from anywhere. This (IMHO) simplifies access

I'm using realtime sip peers and I need to enable a range of IP addresses for a peer. I have: deny = 0.0.0.0/0.0.0.0 permit = xxx.yyy.zzz.0/255.255.255.0 mask = 255.255.255.0 defaultIP = xxx.yyy.zzz.112 host = xxx.yyy.zzz.112 Addresses other than .112 are being denied. Can someone offer assistance? Am I doing something wrong? Bruce

On Wed, Jan 8, 2020 at 5:37 PM H <agents at meddatainc.com> wrote: > I am being attacked by an entire subnet where the first two parts of the > IP address remain identical but the last two parts vary sufficiently that > it is not caught by fail2ban since the attempts do not meet the cut-off of > a certain number of attempts within the given time. > > Has anyone created a

On Thu, Jan 9, 2020 at 6:07 AM H <agents at meddatainc.com> wrote: > I am being attacked by an entire subnet where the first two parts of the > IP address remain identical but the last two parts vary sufficiently that > it is not caught by fail2ban since the attempts do not meet the cut-off of > a certain number of attempts within the given time. > > Has anyone created a

> Has anyone created a fail2ban filter for this type of attack? As of > right now, I have manually banned a range of IP addresses but would > like to automate it for the future. > As far as I can see fail2ban only deals with hosts and not networks - I suspect the issue is what is a "network": It may be obvious to you looking at the logs that these are all related, but you

> > > > > As far as I can see fail2ban only deals with hosts and not networks - I > > suspect the issue is what is a "network": It may be obvious to you > > looking at the logs that these are all related, but you run the risk > > that getting denied accesses from, say, 1.0.0.1 and 1.1.0.93 and > > 1.2.0.124 may be interpreted as a concerted attack

Hi, I'm using sshguard to acomplish this. You can acutally choose tthe size of the range you want to block, /8 of /16, no problem. It works perfect! It is included in the repo both for C7 and C8. Adrian -- Adri P. van Bloois "Elegance is not a dispensable luxury but a factor that decides between success and failure." Edsger W. Dijkstra

I have experience block DDoS atacks. Contac White me in prived. If you have intereses. El mi?., 8 ene. 2020 8:45 p. m., Keith Christian <keith1christian at gmail.com> escribi?: > On Wed, Jan 8, 2020 at 5:37 PM H <agents at meddatainc.com> wrote: > > > I am being attacked by an entire subnet where the first two parts of the > > IP address remain identical but the

Hi, it becomes more and more common to have machines with dynamically assigned IP addresses online (e.g. DSL), which can be found through dynamic DNS entries. Unfortunately, the "Known Hosts" mechanism doesn't work for these machines: Since the entry is made for the IP address, there's a new entry every time the address changes. Therefore, an option should be invented

I have a block of IP addresses (2048) used for ADSL connections to customers. In order to provide a fair slice of available bandwidth on the contended services I would like to be able to set up some kind of SFQ filter, but using a hash of the destination IP address rather than the the full source and destination ip and port. This would be done at the Internet side gateway for traffic being

[Please keep CC] There are options like these: [global] hosts allow = \ 127.0.0.0/8 \ 192.168.1.0/29 hosts deny = ALL If I put the IP to the global section (hosts allow), that IP would be allowed to access all shares. I'd like an outside (internet) IP to be allowed to access only a certain share and not others. Is this kind of finer

On 1/9/20 2:08 AM, Pete Biggs wrote: >> Has anyone created a fail2ban filter for this type of attack? As of >> right now, I have manually banned a range of IP addresses but would >> like to automate it for the future. >> > As far as I can see fail2ban only deals with hosts and not networks - I > suspect the issue is what is a "network": It may be obvious to

I am being attacked by an entire subnet where the first two parts of the IP address remain identical but the last two parts vary sufficiently that it is not caught by fail2ban since the attempts do not meet the cut-off of a certain number of attempts within the given time. Has anyone created a fail2ban filter for this type of attack? As of right now, I have manually banned a range of IP addresses

Is is possible to assign one name to a client, but have multiple ip addresses (3 or more) say for a laptop that can be connected by wireless, hardline on laptop, or hard-line on docking station where DHCP server issues multiple ip addresses for each connection which could be used simultaneously or individually? and have nslookup yield the one of the working/connected ip address or say first

> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Brian Davis via samba > Verzonden: donderdag 21 februari 2019 23:59 > Aan: samba at lists.samba.org > Onderwerp: [Samba] Active Directory one Client with multiple > IP addresses > > Is is possible to assign one name to a client, but have multiple ip > addresses (3 or

https://bugzilla.netfilter.org/show_bug.cgi?id=924 Summary: Range: It is not possible invert a range of ip address Product: nftables Version: unspecified Platform: x86_64 OS/Version: Debian GNU/Linux Status: NEW Severity: normal Priority: P5 Component: nft AssignedTo: pablo at netfilter.org

Hey, I was fiddling with wonder shaper and it works great, except in my situation I only have 1 real network interface and the other interface is a virtual interface ie eth0:0, and tc doesn''t seem to support that. I have 2 subnets, one of which goes to the router which then goes to the internet, and the other subnet which contains the rest of the computers which go through this server

Hello All. I read in an earlier post at http://markmail.org/search/?q=autosign+issues#query:autosign%20issues+page:1+mid:we6jrbn7hdjnhrie+state:results that as of puppet v24.4, autosigning did not support IP addresses. I am running v25.5. Is this still the case? Cheers, David -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To