Yep, you are right, sorry. I just felt need to add my comment to point out that these checks IP<>Country have far from reliable information. Regards David farinic -----Original Message----- From: Edward Sullivan [mailto:esullivan@xxxxxxx] Sent: Thursday, April 17, 2003 5.19 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: IP Address blocks by Countries http://www.ISAserver.org David, I am sure your opinion is interesting to Joe, who posed the original question. My responses were meant to supply him with answers, and not to start a socio-economical or political discussion on the hazards and economic pitfalls of blocking IP addresses. Joe never said he wanted to block anyone - only that he wanted a way to associate IP address blocks with countries. :) -----Original Message----- From: David Farinic [mailto:davidf@xxxxxxx] Sent: Thursday, April 17, 2003 10:11 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: IP Address blocks by Countries http://www.ISAserver.org >>Well, when there is an ASP component like this one, I am not sure I can agree >>that the Internet is borderless: >> http://www.activetarget.com/ Well ISPs are pushed to identify and comply with current society so at the end we will have to say where we are and who we are.... However seeing such components and knowing how internet evolved in central Europe when i often been connected directly with ip registrated with some ISP in USA i can tell just this: these tools can be deadly inaccurate... means innocent users can suffer based on these restrictions... Should i restrict all connection to USA just because my debit card has been compromised by some semi-legal company in USA(CA) ? Answer: NO. We should plug the hole, not cover our eyes (packets from 1 direction) hoping it would not happen from somewhere else. Simply sometimes ppl are using tools because of their simplicity without knowing whole true(background). Thats why false advertising works... So my statement is: no restriction based on Country IPs are not safe precautions if i want i will bypass it in matter of seconds. I saw in DNS attempts to implement also records for position however it failed... there wasn't force strong enough to make it MUST field in STANDARD RFC. Now Microsoft knows about it (and not just them) and they want to tackle identity problem directly to IP layer.. let see how they will succeed as they can push standard themselves. Just my view over this issue based on 10y. inet usage experience. David Farinic. -----Original Message----- From: Edward Sullivan [mailto:esullivan@xxxxxxx] Sent: Thursday, April 17, 2003 4.39 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: IP Address blocks by Countries http://www.ISAserver.org Well, when there is an ASP component like this one, I am not sure I can agree that the Internet is borderless: http://www.activetarget.com/ "ActiveTarget is an ActiveX DLL component for ASP that allows you to easily lookup the country code or name by IP address. It can be used to track website visitors geographically, analyse website traffic, for anti-credit card fraud and faked registration, to filter valueless traffic and decrease bandwidth cost. It is fast, accurate, stable and easy to use." -----Original Message----- From: David Farinic [mailto:davidf@xxxxxxx] Sent: Thursday, April 17, 2003 9:38 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: IP Address blocks by Countries http://www.ISAserver.org don't u know internet is borderless? but it seems some ppl want to get borders even on internet ... restriction without prevention leads nowhere. -----Original Message----- From: Joe Aldeguer [mailto:jaldeguer@xxxxxxxxxx] Sent: Thursday, April 17, 2003 4.27 PM To: [ISAserver.org Discussion List] Subject: [isalist] IP Address blocks by Countries http://www.ISAserver.org Greetings lists, Does anyone have a lists of countries associated to IP address blocks assign to a particular country or a link where I can find this info? Thanks. Joe This mail was content-checked for malicious code and viruses by GFI MailSecurity. GFI MailSecurity provides email content checking, exploit detection and anti-virus for Exchange & SMTP servers. Spam, viruses, dangerous attachments and offensive content are removed automatically. Key features include: Multiple virus engines; Email content & attachment checking; Exploit shield - email intrusion detection & defence; Email threats engine - analyses & defuses HTML scripts, .exe files & more. In addition to GFI MailSecurity, GFI also produces the GFI FAXmaker fax server & GFI LANguard network security product ranges. For more information on our products, please visit http://www.gfi.com. This disclaimer was sent by GFI MailEssentials for Exchange/SMTP.