 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Java Forum / Security / December 2003IP filter (range)
I've written a simple tomcat filter that checks a space separated list of IP addresses (taken as an argument). Now I need to make it work better. I need to modify it to accept a range of IP addresses as well as a single IP address. Any suggestions on the best way to work this problem? Thanks, -Mark > need to modify it to accept a range of IP addresses as well as a single IP > address. Any suggestions on the best way to work this problem? What about regular expressions? Split the list into its single entries and check which one fits which type of input (range or ip). with regards, Christian || "MF" <mfaine@knology.net> schrieb im Newsbeitrag || news:vtsh9knmju1i54@corp.supernews.com... [quoted text clipped - 7 lines] || with regards, || Christian What I could really use is a means of determining a netmask given an IP address. for example 128.148.132.0/24 could be used to allow 256 hosts addresses in the range 128.148.132.0-255, but how do determine the netmask for any three (or four or twenty) ip addresses? Hopefully I could then take a given IP address, compare it against a a network IP and a subnet mask and determine if a connection should be allowed or not. -Mark > What I could really use is a means of determining a netmask given an > IP address. > > for example 128.148.132.0/24 could be used to allow 256 hosts > addresses in the range 128.148.132.0-255, but how do determine the > netmask for any three (or four or twenty) ip addresses? There is no way to exactly determine the netmask from an IP address alone, or even from a set of IP addresses that you know belong to the same network. From a set of addresses you can determine the longest possible netmask they might be using, but that's really not much better than an educated guess. Simply determine the length of their common prefix. /gordon  Signature[ do not email me copies of your followups ] g o r d o n + n e w s @ b a l d e r 1 3 . s e > || "MF" <mfaine@knology.net> schrieb im Newsbeitrag > || news:vtsh9knmju1i54@corp.supernews.com... [quoted text clipped - 18 lines] > network IP and a subnet mask and determine if a connection should be allowed > or not. As a first approximation you could use the IP address's class to determine its subnet. Originally this was If IP address starts with binary 0, subnet mask is 8 bits (Class A). If IP address starts with binary 10, subnet mask is 16 bits (Class B). If IP address starts with binary 110, subnet mask is 24 bits (Class C). See, for example, http://www.redhat.com/advice/tips/ipnetworking.html. However, the class system has broken down, and the actual subnet masks used are not always the defaults listed above any more. --Mike Amling Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.