Block the entire range of IP address in Linux using hosts.deny

[Sonic]

I want to block some IP addresses on my Linux server from remote access. Is this possible? I want to block the entire range of 58.50.0.0. I think I need to put this information on hosts.deny file but how can I do that? Can you help me? Is there any simpler way to achieve this?

[Big Fish]

I am not sure if sshd would respond to /etc/hosts.deny. However you can try installing apf firewall use "apf -d IP_address" to block IP address range.

[Zachary]

hosts.deny file describes the names of the hosts which are not allowed to use the local INET services, as decided by the '/usr/sbin/tcpd' server. So add the IP address into hosts.deny file using:

Code:

ALL: ip_address

For example:

Code:

ALL: 58.50.0.0

[Aleksandra]

You can even try droping all packets from that network in your firewall using something like:

Code:

# iptables -I INPUT -j DROP -s 58.50.0.0/16

However if you are using "ALL" statement just remember that you must use a comma separator after each /etc/hosts.deny entry:

Code:

ALL: ip_address1, ip_address2, ip_address3, ....