Specific rule to block a range of IP addresses

General discussions about Little Snitch
Post Reply
mustbjones
Rank 2
Rank 2
Posts: 40
Joined: Tue Nov 06, 2007 7:42 pm

Specific rule to block a range of IP addresses

Post by mustbjones » Sat Sep 19, 2009 10:19 pm

In version 1 of LS, there was a drop down box that showed a range of IP addresses that could be blocked from just one IP address. In version 2 that feature seems to have gone away. So how would I write a specific rule for Safari or Firefox that would block all IP address in the range 66.235.128.0 through 66.235.159.255? Thanks.

mustbjones
Rank 2
Rank 2
Posts: 40
Joined: Tue Nov 06, 2007 7:42 pm

Re: Specific rule to block a range of IP addresses

Post by mustbjones » Thu Sep 24, 2009 7:24 pm

If I put the following - 66.235.128.0/19 - into a safari/firefox rule would this block all connections to the range in question?

crowston
Posts: 2
Joined: Tue Feb 26, 2008 12:52 am

Re: Specific rule to block a range of IP addresses

Post by crowston » Mon Oct 05, 2009 11:34 pm

Actually, I'd like to allow a range--Dropbox uses something like 50 servers (dl-client17.getdropbox.com, dl-client18.getdropbox.com, etc.), so I'd like to be able to allow connections to the range rather than okaying them one at a time. I suspect that these are in an IP range, but host wildcards would be handy too.

mustbjones
Rank 2
Rank 2
Posts: 40
Joined: Tue Nov 06, 2007 7:42 pm

Re: Specific rule to block a range of IP addresses

Post by mustbjones » Sun Oct 11, 2009 7:39 pm

If you put a single IP address in the "Whois" tab of Network Utility and use "whois.arin.net" it will show the IP range. Look for an entry called CDIR (or CIDR) and copy the entry exactly into Little Snitch. You should be able to allow or deny I think.

Post Reply