Package: firehol
Version: 1.231-2sarge1
Severity: normal
Tags: patch
Hi,
in 2005 and 2006, IANA has released the address ranges
41, 73-76, 90, 91, 121-126, 189, 190
(first byte of the IP address respectively)
but these ranges are still included in the list of reserved IPS in firehol.
The current (optimized) list of reserved IPs is
RESERVED_IPS="0.0.0.0/7 2.0.0.0/8 5.0.0.0/8 7.0.0.0/8 23.0.0.0/8 27.0.0.0/8
31.0.0.0/8 36.0.0.0/7 39.0.0.0/8 42.0.0.0/8 77.0.0.0/8 78.0.0.0/7 92.0.0.0/6
96.0.0.0/4 112.0.0.0/5 120.0.0.0/8 127.0.0.0/8 173.0.0.0/8 174.0.0.0/7
176.0.0.0/5 184.0.0.0/6 197.0.0.0/8 223.0.0.0/8 240.0.0.0/4"
I attached a python script that generates an optimized IP range list from
the information at
http://www.iana.org/assignments/ipv4-address-space
Cheers,
Sven
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.4.27-1-686
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages firehol depends on:
ii bash 2.05b-26 The GNU Bourne Again SHell
ii bc 1.06-15 The GNU bc arbitrary precision cal
ii iproute 20041019-3 Professional tools to control the
ii iptables 1.2.11-10 Linux kernel 2.4+ iptables adminis
ii net-tools 1.60-10 The NET-3 networking toolkit
-- no debconf information
#!/usr/bin/env python
# -*- coding: latin1 -*-
import urllib
f = urllib.urlopen("http://www.iana.org/assignments/ipv4-address-space";)
ranges = sum([1L << int(line[0:3])
for line in f.readlines()
if line.count("IANA - Reserved") > 0])
f.close()
compressed = []
for bits in range(8, -1, -1):
mask = 2L**2**bits - 1
for pos in range(0, 256, 2**bits):
if ranges & mask == mask:
compressed.append((pos, 8-bits))
ranges &= ~mask
mask <<= 2**bits
compressed.sort()
for r in compressed:
print "%i.0.0.0/%i" % r,
