First, open your IP tables rules file in nano:
Next, based on your circumstances add the following to your IP tables rules file above the iptables -A INPUT -j DROP line:
- Block a specific IP Address:
-A INPUT -s 192.168.5.130/32 -j DROP
- Block all addresses within the final octet (i.e., block all IP addresses from 192.168.5.
0to 192.168.5.255):-A INPUT -s 192.168.5.0/24 -j DROP
- Block all addresses within the last two octets (block addresses from 192.168.
0.0to 192.168.255.255):-A INPUT -s 192.168.0.0/16 -j DROP
- Block all addresses within the last three octets (block addresses from 192.
0.0.0to 192.255.255.255):-A INPUT -s 192.0.0.0/8 -j DROP
Notes and Observations
/8, /16, and /24 are known as Classless Inter-Domain Routing (CIDR) notation. It is used to represent IPv4 addresses and their prefixes. In the above example with 192.168.5.0/24, 192.168.5.0 is the prefix and /24 is the CIDR notation.
References: