From: Church, Chuck (cchurch@wamnetgov.com)
Date: Thu Jun 24 2004 - 08:59:49 GMT-3
Here's the link to the 'bogon' list that most ISPs seem to use -
http://www.cymru.com/Documents/bogon-list.html
Chuck Church
Wam!Net Government Services - D&I Team
Lead Design Engineer
CCIE #8776, MCNE, MCSE
1210 N. Parker Rd.
Greenville, SC 29609
Office: 864-335-9473
Cell: 703-819-3495
cchurch@wamnetgov.com
PGP key:
http://pgp.mit.edu:11371/pks/lookup?op=index&search=cchurch%40wamnetgov.
com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Ian Stong
Sent: Thursday, June 24, 2004 7:43 AM
To: 'Koen Peetermans'; 'Geert Nijs'; ccielab@groupstudy.com
Subject: RE: Class A network
Hi,
Koen is correct. There are other networks you can/should consider
blocking that are part of the list known as Bogons/Martians/RFC1918 as
follows:
0.0.0.0/7
2.0.0.0/8
5.0.0.0/8
7.0.0.0/8
10.0.0.0/8
23.0.0.0/8
27.0.0.0/8
31.0.0.0/8
36.0.0.0/7
39.0.0.0/8
41.0.0.0/8
42.0.0.0/8
49.0.0.0/8
50.0.0.0/8
71.0.0.0/8
72.0.0.0/5
89.0.0.0/8
90.0.0.0/7
92.0.0.0/6
96.0.0.0/3
169.254.0.0/16
172.16.0.0/12
173.0.0.0/8
174.0.0.0/7
176.0.0.0/5
184.0.0.0/6
189.0.0.0/8
190.0.0.0/8
192.0.2.0/24
192.168.0.0/16
197.0.0.0/8
198.18.0.0/15
223.0.0.0/8
224.0.0.0/3
Note that the list is somewhat dynamic so you should update it
periodically.
Thanks,
Ian
http://www.ccie4u.com
Rack Rentals and CCIE Lab Scenarios starting at $20
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Koen Peetermans
Sent: Thursday, June 24, 2004 5:23 AM
To: 'Geert Nijs'; ccielab@groupstudy.com
Subject: RE: Class A network
Geert,
It's safe to block this. It's not used on the internet and should not be
coming into your router as a source address.
If you look at the autosecure 12.3 feature, it is blocked as well :
http://www.cisco.com/en/US/products/sw/iosswrel/ps5187/products_feature_
guid
e09186a008017d101.html
Kind regards,
Koen.
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Geert Nijs
Sent: donderdag 24 juni 2004 10:53
To: ccielab@groupstudy.com
Subject: Class A network
Hi group,
I just came across an ACL on an internet router containing the line:
access-list 110 deny ip 0.0.0.0 0.255.255.255
And i was wondering, the first class A network: 0.x.x.x Is this a valid
network ? Is this network distributed to a company on the internet ??
If so, then i can't filter it off.
If not official, i can filter it completely off to prevent hackers
spoofing these addresses.....
Regards,
Geert
########################################################################
####
#########
This e-mail and any attached files are confidential and may be legally
privileged.
If you are not the addressee, any disclosure, reproduction, copying,
distribution, or other dissemination or use of this communication is
strictly prohibited.
If you have received this transmission in error please notify Simac
immediately and then delete this e-mail.
Simac has taken all reasonable precautions to avoid virusses in this
email.
Simac does not accept liability for damage by virusses, for the correct
and complete transmission of the information, nor for any delay or
interruption of the transmission, nor for damages arising from the use
of or reliance on the information.
All e-mail messages addressed to, received or sent by Simac or Simac
employees are deemed to be professional in nature. Accordingly, the
sender or recipient of these messages agrees that they may be read by
other Simac employees than the official recipient or sender in order to
ensure the continuity of work-related activities and allow supervision
thereof.
########################################################################
####
#########
This archive was generated by hypermail 2.1.4 : Sat Jul 03 2004 - 19:40:49 GMT-3