On Tue, 6 Aug 2019 18:42:29 -0700 Michael Sierchio <ku...@tenebras.com> wrote:
> On Tue, Aug 6, 2019 at 6:23 PM Rodney W. Grimes < > freebsd-...@gndrsh.dnsmgr.net> wrote: > > > > Hi! > > > > > > Is it possible to bl;ock compute.amazonasws.com with ipfw > > > firewall. I have a table with many amazonasws IPs but every time > > > when I start Firefox it shows the new one (I am checkong with > > > tcpdump). > > > > Since it is almost impossible to keep up with the IP's.... > > > > This is not even remotely true. > > https://ip-ranges.amazonaws.com/ip-ranges.json > > is kept up-to-date, and you can subscribe to an SNS topic to be > notified of changes: > > arn:aws:sns:us-east-1:806199016981:AmazonIpSpaceChanged > > > > You could put the entire contents, or a portion of it, in an ipfw > table and swap tables atomically upon change. > I did try but there are not just compute.amazonasws.com as Rodney W. Grimesand wrote and with all blockings come more problems. -- “Hungry man, reach for the book: it is a weapon.” ― Bertolt Brecht _______________________________________________ freebsd-ipfw@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-ipfw To unsubscribe, send any mail to "freebsd-ipfw-unsubscr...@freebsd.org"
