Re: blocklistd.conf blocking an ipv6 /48 subnet

[Brook Milligan <brook%biology.nmsu.edu@localhost>]

> On Dec 30, 2025, at 10:56, Greg Troxel <gdt%lexort.com@localhost> wrote:
> 
> I typed 'man blacklistd' and then 'man blacklistd.conf' on a NetBSD 9
> system.  On NetBSD 10 is blocklist and seems a little more detailed.
> Same on NetBSD 11.

OK, I had forgotten about the name change.  

> 
>>> [remote]
>>> 0.0.0.0/0       stream  tcp     *               =/24    =       =
>>> #[0::0]/0       stream  tcp     *               =/64    =       =
> 
> This is in /usr/share/examples/blacklistd/blacklistd.conf on 9 but the
> newer examples have dropped the v6 example and are generally more
> confusing.

I would have expected those files to come from 
https://cvsweb.netbsd.org/bsdweb.cgi/src/external/bsd/blacklist/ or more recently blocklist, but I still cannot find anything like that in either place.  I wonder where the files come from.
> 
>> This clears things up a lot.  Unless I missed something, perhaps this should be added to the cvs tree.
> 
> I think it's just a question of clarifying the examples and adding back
> a :: => 64 line.

Yes, that would be a big help.  (Once we know where the files are. :)

> I think it is prudent.  I just meant that after you experience it for a
> while, I am curious what you see.

Thanks for clarifying.  I’ll let it run and see what happens.

I mainly wanted to be sure that I understood how the ipv6 addresses where being handled / blocked.  Your notes help a lot.

Cheers,
Brook