 |  |  |  |  |  |  |  |
Block a host
 |
Hi,
I need some informations about how a country like ...Italy, UK,.. can block the access to a site of its country(under .it domain) to a the foreign host.
for example: The state "Italy" have a internet game that is legal for the people that lives in Italy, but it doesn't want that foreign people the lives in others country can access to this game.
How it can do this? (I need specific technique not political consideration). I have thinked about the dual thing, the case in which a country wants to block the access to a foreign site for its citizens...The state can impose, obligue the ISP to not respond to the Dns query to the specip game site...
Can you help me? Have you got a link that can help me?
Thanks.
I need some informations about how a country like ...Italy, UK,.. can block the access to a site of its country(under .it domain) to a the foreign host.
for example: The state "Italy" have a internet game that is legal for the people that lives in Italy, but it doesn't want that foreign people the lives in others country can access to this game.
How it can do this? (I need specific technique not political consideration). I have thinked about the dual thing, the case in which a country wants to block the access to a foreign site for its citizens...The state can impose, obligue the ISP to not respond to the Dns query to the specip game site...
Can you help me? Have you got a link that can help me?
Thanks.
You should largely disregard DNS for identifying the original of an IP address. DNS names can be set up anywhere and there is significant overhead with performing a DNS resolution on inbound IPs which will eventually plug up your server.
What you should do is find a database of IP blocks located to each country and filter the entire blocks.I suppose you could contact ISPs to do the filtering for you but you will not get in touch with every ISP and over time the rules will be 'lost' or new ISPs will start up in the country. Here is what I do to filter IP addresses:
The ip2nation database should give you a comprehensive list of IP blocks belonging to each country.
What you should do is find a database of IP blocks located to each country and filter the entire blocks.I suppose you could contact ISPs to do the filtering for you but you will not get in touch with every ISP and over time the rules will be 'lost' or new ISPs will start up in the country. Here is what I do to filter IP addresses:
bash Syntax (Toggle Plain Text)
The ip2nation database should give you a comprehensive list of IP blocks belonging to each country.
•
•
•
•
Originally Posted by sknake 
You should largely disregard DNS for identifying the original of an IP address. DNS names can be set up anywhere and there is significant overhead with performing a DNS resolution on inbound IPs which will eventually plug up your server.
What you should do is find a database of IP blocks located to each country and filter the entire blocks.I suppose you could contact ISPs to do the filtering for you but you will not get in touch with every ISP and over time the rules will be 'lost' or new ISPs will start up in the country. Here is what I do to filter IP addresses:
bash Syntax (Toggle Plain Text)
The ip2nation database should give you a comprehensive list of IP blocks belonging to each country.
1)If I have understood correctly, a governement should require/constrain the administrator of the "game site" or better the ISP that handles the servers and lodge the site:
" to set a list of IP adresses of the all countries that it doesn't want allow to access at the site and put a rule to deny the requests from the Ip in the black list" right? The ISP can do this adding a rule in to the .htacces file, right?
2) But, you have written "block.de:217.85.0.0/255.255.0.0" its means that you block all the german host, but how can you know all the IP of German host?
thanks
1) The government shouldn't be in the middle of this unless its China/Iran and they're trying to censor internet access to promote their propoganda but that is another matter entirely.
2) No that does not block all german hosts, that is merely one subnet of .de IP ranges.
You should read my last post. I indicated there is a database called "ip2nation". You should get that database which lists IP ranges for each country, select the countries you want to block, and implement the firewall rules. This will depend on what type of edge device (router) you have.
2) No that does not block all german hosts, that is merely one subnet of .de IP ranges.
You should read my last post. I indicated there is a database called "ip2nation". You should get that database which lists IP ranges for each country, select the countries you want to block, and implement the firewall rules. This will depend on what type of edge device (router) you have.
|
Similar Threads
- Delete a block of lines in a file (Python)
- host file, host IP resolution (PHP)
- Wanted Business Partner (web host) (Internet Marketing Job Offers)
- hosting reverse dns for partial IP block (Domains and DNS)
- No quickrecovery in the compaq presario please help (Troubleshooting Dead Machines)
- Is It Possible to block a particular Web Site? (Web Browsers)
Other Threads in the Network Security Forum
- Previous Thread: Locked out of router wireless interface
- Next Thread: Comparison of VoIP programs like Skype, Wengo, Voipbuster, etc
| Thread Tools | Search this Thread |
Latest Network Security Posts
- Today's Posts
- Unanswered Threads
Related Forum Features
Tag cloud for Network Security
adobe advice antivirus apple banking blackmail botnet browser business cellphone china confidentiality crime cybercrime cyberwarfare daniweb data database dataloss dataprotection development email emailretention encryption exploit facebook fail firefox forensic fraud google government hack hacker hacking hardware ibm idtheft information infosec internet iphone kaspersky kernel koobface law linux malware mcafee mckinnon microsoft military mobile music nasa nationalsecurity network networks news obama olympics password passwords pentagon phishing php politics privacy realplayer report research satnav scam school search security socialnetworking software softwaredevelopment spam survey symantec symbian terrorism terrorist theft trends trojan trojans twitter uk usb virus vulnerability warning web wireless worm yahoo youtube
