[Date Prev]   [Date Next] [Thread Prev]   [Thread Next] [Date Index]   [Thread Index]

 

     [snips-users] ER: snipslogd and CIDR (plus TCP Wrappers?)

Apologies if memory fails me here (ie. if this request has been posted
before), but I think some of the ACLs and the like in snipslogd.conf
should understand CIDR notation and perhaps some options.  For example...

  # NOCOL Hosts Subnet (192.168.1.56/29)
  permithosts     192.168.1.57 192.168.1.58 192.168.1.59
  permithosts     192.168.1.60 192.168.1.61

...would be much cleaner as...

  permithosts	192.168.1.56/29

...or even...

  permithosts	192.168.1.56:255.255.255.248


Perhaps a hybrid "dream" set of options would be:

  permitnet	192.168.1.0/24 nobroadcast notnetwork ! 192.168.1.1

...which would effectively ignore traffic from the network and broadcast
addressed (ie. the "all zero" and "all ones" addresses) as well as a
router (or host) we specify... like "all but these exceptions."


Also would be nice to be linkable with TCP Wrappers... if for no other
reason than everything being in one place... =)

Russell


-- 
Russell M. Van Tassell
russell at loosenut com

Zyrion Traverse Network Monitoring & Network Management Software