On Tue, 14 Aug 2001, Aly Dharshi wrote:
[..]
> So if reznet spans the IP blocks 142.66.72.0/255 142.66.73.0/255
> 142.66.74.0/255 142.66.75.0/255
> then:
>
> host_accept_relay =
> 142.66.72.0/255:142.66.73.0/255:142.66.74.0/255:142.66.75.0/255
[..]
Er.. Where are you getting 255? The part after a slash in this type of
specification is 'number of bits' and it should run between 0 (The
entire Internet!) and 32 (Just one single IP address).
Doing it your way, you would actually want:
142.66.72.0/24:142.66.73.0/24:142.66.74.0/24:142.66.75.0/24
But you could also use just 142.66.72.0/22 to refer to that entire block
of 1024 addresses.
And specifying IP addresses (or networks) in host_accept_relay is a FAR
better thing to do than hostname/domains.
If you specify *.reznet.uleth.ca, it would be trivial for some
undesirable third party to set up a PTR in their DNS for an IP in their
network to say whatever.reznet.uleth.ca, and then you would let them
relay.
