webadm@cc.fh-lippe.de writes:
>Hi.
>
>I'm trying to use an acl range.
>
>I tried these variants, but it seems in both cases that only the
>first IP is beeing checked.
>
>Configuration:
>
>acl cc-buero src 193.16.118.84/255.255.255.255-193.16.118.88/255.255.255.255
>acl cc-buero src 193.16.118.84/32-193.16.118.88/32
>acl all src 0.0.0.0/0.0.0.0
>
>BTW: 0.0.0.0/0 seems not to work :-)
>
>http_access deny !cc-buero all
>http_access allow all
>
>Logging shows:
>
>96/09/27 18:44:20| aclCheck: checking 'http_access deny !cc-buero all'
>96/09/27 18:44:20| aclMatchAclList: checking !cc-buero
>96/09/27 18:44:20| aclMatchAcl: checking 'acl cc-buero src 193.16.118.84/255.2
55.255.255-193.16.118.88/255.255.255.255'
>96/09/27 18:44:20| aclMatchIp: h = 193.16.118.86
>96/09/27 18:44:20| aclMatchIp: addr1 = 193.16.118.84
>96/09/27 18:44:20| aclMatchIp: addr2 = 0.0.0.0
>96/09/27 18:44:20| aclMatchIp: returning 0
>96/09/27 18:44:20| aclMatchAclList: checking all
>96/09/27 18:44:20| aclMatchAcl: checking 'acl all src 0.0.0.0/0.0.0.0'
>96/09/27 18:44:20| aclMatchIp: h = 0.0.0.0
>96/09/27 18:44:20| aclMatchIp: addr1 = 0.0.0.0
>96/09/27 18:44:20| aclMatchIp: addr2 = 0.0.0.0
>96/09/27 18:44:20| aclMatchIp: returning 1
>
>With the <IP>/32 variant it is the same, what have I done wrong?
Sorry, my fault in giving incorrect usage. It should be
addr1-addr2/netmask
Duane W.
Received on Wed Oct 09 1996 - 09:19:37 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:33:15 MST