From: Mark Wooding <mdw@distorted.org.uk>
Date: Thu, 8 Mar 2012 18:56:48 +0000 (+0000)
Subject: classify.m4: Reject the RFC5737 documentation-only addresses.
X-Git-Url: https://git.distorted.org.uk/~mdw/firewall/commitdiff_plain/677ef44ed3d745abddbb192ca4d53778819ffe6c

classify.m4: Reject the RFC5737 documentation-only addresses.
---

diff --git a/classify.m4 b/classify.m4
index 8b6a650..16a92c9 100644
--- a/classify.m4
+++ b/classify.m4
@@ -245,7 +245,8 @@ done
 ## Fill in the black holes in the network.
 for addr in \
 	10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 \
-	127.0.0.0/8 192.0.2.0/24
+	127.0.0.0/8 \
+	192.0.2.0/24 198.51.100.0/24 203.0.113.0/24
 do
   run iptables -t mangle -A in-default -s $addr -g bad-source-address
 done