The banning of IP address ranges using Windows.
Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: The banning of IP address ranges using Windows.

  1. #1
    Junior Member
    Join Date
    Jun 2002
    Posts
    18

    The banning of IP address ranges using Windows.

    Quick question:

    How do I ban all traffic from a specific IP address using Windows XP? I am able to do this from within Linux using the /etc/hosts.deny functionality. I am not really a Windows user but would like to stop users of my box from visiting certain web sites.

    Any comments welcome.

    Thanks in advance.
    Keyboard not detected. Press F1 to continue.

  2. #2
    0_o Mastermind keezel's Avatar
    Join Date
    Jun 2003
    Posts
    1,024
    A firewall maybe? Use outpost or something and configure it manually to block certain addresses. I've never actually had this problem.....hope this helps you though.

  3. #3
    Senior Member
    Join Date
    May 2003
    Location
    Area-51
    Posts
    148
    Blackice also has the option to block IPs
    It is impossible to make anything foolproof because fools are so ingenious. - Murphy
    CooLL.Net

  4. #4
    Junior Member
    Join Date
    Jun 2002
    Posts
    18
    I could install a firewall and configure it to bounce packets based upon the source address but surely the OS has the ability to do this transparently without the need for further software.
    Keyboard not detected. Press F1 to continue.

  5. #5
    Senior Member
    Join Date
    Feb 2002
    Posts
    1,210
    XP has a hosts file as well.. which you can use just like in *nix

    c:\windows\system32\drivers\etc\hosts

    http://www.accs-net.com/hosts/how_to_use_hosts.html

  6. #6
    Senior Member Maestr0's Avatar
    Join Date
    May 2003
    Posts
    604
    You should be able to do this fine from Control Panel>Administrative Tools>Local Security Settings and then select IP security policies, then Action>Manage IP filter lists and filter actions>Manage Filter Actions. There are some wizards and stuff that should help you out. This is in Win2000 but AFAIK its the same(or very close) in XP.

    -Maestr0
    \"If computers are to become smart enough to design their own successors, initiating a process that will lead to God-like omniscience after a number of ever swifter passages from one generation of computers to the next, someone is going to have to write the software that gets the process going, and humans have given absolutely no evidence of being able to write such software.\" -Jaron Lanier

  7. #7
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207

    Re: The banning of IP address ranges using Windows.

    Originally posted here by wurzul
    [B]Quick question:

    How do I ban all traffic from a specific IP address using Windows XP?
    Can windows XP's firewall not do this? If it can't then it isn't very good.

    I am able to do this from within Linux using the /etc/hosts.deny functionality.
    No, that is not what hosts.deny does.

    Hosts.deny only bans connections to some services (mostly old stuff like telnet and ftp)

    Any application which doesn't read hosts.deny will not be affected.

    Seeing as such things as web browsers don't take any notice of hosts.deny, they will still be able to receive traffic from banned hosts in that file.

    Sumdumguy wrote:
    XP has a hosts file as well.. which you can use just like in *nix...
    Yes, but that's not what the OP was talking about. hosts.deny is totally unrelated to hosts.

    Slarty

  8. #8
    Senior Member
    Join Date
    Nov 2002
    Posts
    382
    I'm not a big fan of winblows but the embedded "firewall" function of XP (previous Maestr0 post described how to conf it) can do just what you're expecting to:
    Be a dumb stateless filter just like a Cisco ACL....

    N.B. But maybe I'm wrong, & I'll be interesting for a personal AO feedback on XP "firewall" function where it is less efficient than an ACL.
    [shadow] SHARING KNOWLEDGE[/shadow]

  9. #9
    Senior Member
    Join Date
    Oct 2001
    Posts
    748
    As maestro stated, using IP sec policies is the easiest way to block IPs.

  10. #10
    Jaded Network Admin nebulus200's Avatar
    Join Date
    Jun 2002
    Posts
    1,356
    Another easy way to block the IP:

    route -p add <offending_ip> 10.255.255.254

    (make sure the IP is non-existant on your network).

    No firewall needed. I wouldn't recommend doing it too often though.

    /nebulus
    There is only one constant, one universal, it is the only real truth: causality. Action. Reaction. Cause and effect...There is no escape from it, we are forever slaves to it. Our only hope, our only peace is to understand it, to understand the 'why'. 'Why' is what separates us from them, you from me. 'Why' is the only real social power, without it you are powerless.

    (Merovingian - Matrix Reloaded)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •