Home page logo
/

nanog logo nanog mailing list archives

Re: 69.0.0.0/8 - Please update your filters
From: "Jack Bates" <jbates () brightok net>
Date: Wed, 26 Feb 2003 04:49:54 -0600


From: "E.B. Dreger"


Even after the NANOG thread months back?  Yuck.

Yes. This last weekend, the state network added a Bogon list to their
routers. Too bad the list they chose still had 69/8 in it. Not that I mind.
The complaint came from a customer who's multi-homed between us. I like it
when the competition makes foolish mistakes.

Outside of that instance, I get about 1 report every week or two of some
small business out there who's firewall was setup for them years ago, and
they had no clue what it was doing. I can forgive these guys, and it's
usually not too big of a problem. Then again, I'm glad I didn't get the
first blocks.

I _still_ like the idea of putting DNS roots in new IP blocks
during sunrise and having the final octet be .0 and/or .255.  It
would be nice to catch dated bogon filters, lame attempts at
smurf stopping, _and_ stale root.cache in one blow.


I would agree with this, except that it would kill most of the people I've
contacted. Most of the people who are still filtering aren't even aware of
it. If we broke them, they'd have hell trying to fix it. I get a lot of
"uhhhhh. bogon? huh?". Large networks don't have an excuse, but I pity the
small mom and pop shop that hardly even understand what a firewall is.

-Jack
BrightNet Oklahoma


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]