My Community Dashboard

  • Firewall local IPTABLES command for subnets

    Hi all.
    Over the past few weeks the number of spam messages has been growing and I've been trying to block the offending IP ranges.
    I've been adding the IP ranges into the /etc/clearos/firewall.d/local but it doesn't appear to work.
    Example: I put in
    But then I still get many spam messages from 216.99.148.167; 216.99.148.169; 216.99.148.175 etc. etc.
    When I do the command I can see that 216.99.148.0/24 is included in the INPUT with DROP command.

    Since it didn't seem to be working properly, I have now blocked the individual IP addresses. That appears to work however it is somewhat time consuming adding each IP address manually. The subnet notation would be so much more efficient.

    Have I done something wrong in the subnet statement in the local file that it doesn't work?