- Test - lists.nanog.org

exclusive rights on Internet?
by avg＠titan.sprintlink.net 04 Feb '94

04 Feb '94

Hello, i realize that it's off-topic but still think the following message which was forwarded to me by my friend can be of interest to Internet service providers. (I also recently heard something about IIA.ORG and credit card numbers). Personally i consider attempts to gain "exclusive right to resell internet services" by bureaucratic means as highly anti-social and suggest the Internet community to react accordingly. --vadim SprintLink Engineering [RELCOM is Russian Electronic Communications -- the national UUCP and TCP/IP network]. ------FORWARDED MESSAGE----- > Hello Alex, my name is Charles Maslin. I heard through the net that > you are involved with RELCOM and was wondering if you could mail me so > information about it. I am the Vice President of International > Operations at IDN (International Digital Networks). My company is > interested in bringing internet connectivity to anyone who wants it > and will give a free node to any nation that has no internet connectivity at > no cost to that nation. The only thing we ask for in return is the > right to resell internet services in that country on an exclusive > basis for 10 years. The resale rates will be set by bilateral > negotiation between IDN and the government of the country. > The benefits to countries that don't have internet services > are numerous. We supply the hardware and support services and they > pay a nominal charge for access without having to pay any long > distance charges. For countries that already have internet > connectivity, we will supply a node at a very competitive price. If > you think that RELCOM and IDN may have some synergy please contact me. > Thank you and be well. > Charles Maslin > maslin(a)iia.org > (201)928-1000 (work) > (201)626-4771 (home)

1 0

Re: !! (fwd)
by Jeff.Ogden＠um.cc.umich.edu 04 Feb '94

04 Feb '94

I agree that the regional-techs group cannot set policy on who is or isn't a provider or who does or doesn't get address space. However, I think they can talk about these issues and make recommendations on what should be done. In fact I think it is important that they do so. The sooner the better. It seems that the right way to make "policy" is to take recommendations, write an RFC and go through that entire process with the whole business finally endorsed by the IAB. Should try to get other groups to endorse the RFC as well (FARNET, the US Federal policy group the name of which I can never keep straight, the folks in Europe, ...). My guess is that if we can come up with a reasoanble policy that most folks in the Internet will follow it. -Jeff Ogden Merit/MichNet

3 2

Additions to the NSFNET policy-based routing database
by Steven K. Widmayer 04 Feb '94

04 Feb '94

The following changes have been made to the NSFNET policy-based routing database and will be installed on the backbone by 08:00 EST : Total = */8 + */16 + */24 + Other Configured Networks 23843 = 28 4361 19454 0 Added Networks 199 = 0 8 191 0 Deleted Networks 15 = 0 0 15 0 IP address Net name Country Priority:AS ---------- -------- ------- ----------- 143.91/16 GTETELOPS-LAN C:US 1:560 2:701 146.69/16 CALCOMP1 C:US 1:1740 147.211/16 AUSTCONSERV C:AU 1:372 2:297 158.89/16 WOODSIDE C:AU 1:372 2:297 162.15/16 CPUC C:US 1:200 2:201 162.30/16 RGHNET C:US 1:2149 2:174 163.134/16 HIMEJI-DU C:JP 1:1240 2:1800 167.30/16 NET-WASCANNET C:AU 1:372 2:297 192.42.200/24 LUNET-NET21 C:CH 1:1133 2:1674 3:1800 192.70.40/24 FNET-ESE-REN C:FR 1:1800 2:1240 3:1133 4:1674 192.87.18/24 SURF-LAN C:NL 1:1800 2:1133 3:1674 4:1240 192.87.120/24 VSNU C:NL 1:1800 2:1133 3:1674 4:1240 192.87.121/24 ESDNET C:NL 1:1800 2:1133 3:1674 4:1240 192.87.123/24 ING-IP-NET C:NL 1:1800 2:1133 3:1674 4:1240 192.91.241/24 CERN-CNET28 C:CH 1:1133 2:1800 3:1240 192.133.124/24 GTE-GSC-NCS1 C:US 1:86 2:279 192.134.157/24 FNET-IUT-TLS C:FR 1:1800 2:1240 3:1133 4:1674 192.189.102/24 RSEN C:US 1:204 2:1206 192.207.226/24 ENMU-2 C:US 1:209 2:210 193.4.252/24 IS-KEANET C:IS 1:1800 2:1879 3:1133 4:1240 193.10.79/24 SE-GU C:SE 1:1800 2:1879 3:1133 4:1240 193.28.52/24 SYSPART-NET-C-28-52 C:DE 1:1324 2:1800 3:1240 4:1133 193.28.53/24 SYSPART-NET-C-28-53 C:DE 1:1324 2:1800 3:1240 4:1133 193.48.28/24 UNIV-CORSE01 C:FR 1:1800 2:1240 3:1133 4:1674 193.48.219/24 ROCAD-ROCKF3 C:FR 1:1133 2:1800 3:1240 193.49.100/24 LYON3-MANU C:FR 1:1800 2:1240 3:1133 4:1674 193.49.101/24 LYON3-QUAI C:FR 1:1800 2:1240 3:1133 4:1674 193.49.122/24 FR-CESDY C:FR 1:1800 2:1240 3:1133 4:1674 193.49.137/24 FR-NANCY-CDM C:FR 1:1800 2:1240 3:1133 4:1674 193.50.193/24 FR-UVHC2 C:FR 1:1800 2:1240 3:1133 4:1674 193.54.192/24 FR-ESEREN2 C:FR 1:1800 2:1240 3:1133 4:1674 193.54.193/24 FR-ESEREN3 C:FR 1:1800 2:1240 3:1133 4:1674 193.54.194/24 FR-ESEREN4 C:FR 1:1800 2:1240 3:1133 4:1674 193.54.220/24 ROCAD-ROCKF4 C:FR 1:1133 2:1800 3:1240 193.54.228/24 FR-CERCO C:FR 1:1800 2:1240 3:1133 4:1674 193.55.144/24 FR-OBSNANCAY C:FR 1:1800 2:1240 3:1133 4:1674 193.55.254/24 FR-ILLECOT C:FR 1:1800 2:1240 3:1133 4:1674 193.56.4/24 FR-BRGM-ORL1 C:FR 1:1800 2:1240 3:1133 4:1674 193.56.5/24 FR-BRGM-ORL2 C:FR 1:1800 2:1240 3:1133 4:1674 193.56.6/24 FR-BRGM-ORL3 C:FR 1:1800 2:1240 3:1133 4:1674 193.56.7/24 FR-BRGM-ORL4 C:FR 1:1800 2:1240 3:1133 4:1674 193.73.204/24 ACTIVE C:CH 1:701 2:1800 193.84.180/24 VSZBR-B-C-84-180 C:CZ 1:1800 2:1133 3:1240 193.84.181/24 VSZBR-B-C-84-181 C:CZ 1:1800 2:1133 3:1240 193.84.182/24 VSZBR-B-C-84-182 C:CZ 1:1800 2:1133 3:1240 193.84.183/24 VSZBR-B-C-84-183 C:CZ 1:1800 2:1133 3:1240 193.136.51/24 INESCP-NET-SUPER C:PT 1:1800 2:1133 3:1240 193.140.25/24 9EYLUL-NET-C-140-25 C:TR 1:1800 2:1240 193.140.26/24 9EYLUL-NET-C-140-26 C:TR 1:1800 2:1240 193.140.27/24 9EYLUL-NET-C-140-27 C:TR 1:1800 2:1240 193.141.1/24 PEM-CEBIT C:DE 1:1324 2:1800 3:1240 4:1133 193.216.4/24 NO-DATAMETRIX1 C:NO 1:1800 2:1879 3:1133 4:1240 193.227.3/24 EUN-C-227-3 C:EG 1:1800 2:1240 3:1133 4:1674 193.227.4/24 EUN-C-227-4 C:EG 1:1800 2:1240 3:1133 4:1674 193.227.30/24 EUN-C-227-30 C:EG 1:1800 2:1240 3:1133 4:1674 193.227.31/24 EUN-C-227-31 C:EG 1:1800 2:1240 3:1133 4:1674 193.233.5/24 UNICOR-HQ-LAN C:RU 1:1800 2:1240 194.12.128/24 CERN-C-12-128 C:CH 1:1133 2:1800 3:1240 194.12.129/24 CERN-C-12-129 C:CH 1:1133 2:1800 3:1240 194.12.130/24 CERN-C-12-130 C:CH 1:1133 2:1800 3:1240 194.12.131/24 CERN-C-12-131 C:CH 1:1133 2:1800 3:1240 194.12.132/24 CERN-C-12-132 C:CH 1:1133 2:1800 3:1240 194.12.133/24 CERN-C-12-133 C:CH 1:1133 2:1800 3:1240 194.12.134/24 CERN-C-12-134 C:CH 1:1133 2:1800 3:1240 194.12.135/24 CERN-C-12-135 C:CH 1:1133 2:1800 3:1240 194.41.0/24 DANTE-NL-US C:NL 1:1800 2:1133 3:1674 4:1240 198.6.3/24 SHEPS C:US 1:701 2:702 198.6.14/24 MURPHNET2 C:US 1:701 2:702 198.6.15/24 BALR-NET C:US 1:701 2:702 198.27.51/24 JSC-B30S51 C:US 1:771 2:372 3:297 198.30.208/24 OAR208 C:US 1:600 198.36.17/24 SCSDNET17 C:US 1:2149 2:174 198.36.18/24 SCSDNET18 C:US 1:2149 2:174 198.36.19/24 SCSDNET19 C:US 1:2149 2:174 198.36.20/24 SCSDNET20 C:US 1:2149 2:174 198.36.21/24 SCSDNET21 C:US 1:2149 2:174 198.36.22/24 SCSDNET22 C:US 1:2149 2:174 198.36.23/24 SCSDNET23 C:US 1:2149 2:174 198.36.24/24 SCSDNET24 C:US 1:2149 2:174 198.36.25/24 SCSDNET25 C:US 1:2149 2:174 198.36.26/24 SCSDNET26 C:US 1:2149 2:174 198.36.27/24 SCSDNET27 C:US 1:2149 2:174 198.62.192/24 SNS-NET1 C:US 1:2149 2:174 198.62.193/24 SNS-NET2 C:US 1:2149 2:174 198.62.194/24 SNS-NET3 C:US 1:2149 2:174 198.74.13/24 BUG-6 C:US 1:2149 2:174 198.76.85/24 NDU1-C-76-85 C:US 1:279 198.78.243/24 FLLIB-NET1 C:US 1:279 2:86 198.80.11/24 CSDCO-DMZ C:US 1:1332 198.92.131/24 NET-LIGHTSCAPE C:US 1:200 2:201 198.133.232/24 GCSI C:US 1:209 2:210 198.163.96/24 ISM-CA-MAN-C-163-96 C:CA 1:603 2:601 3:602 198.163.97/24 ISM-CA-MAN-C-163-97 C:CA 1:603 2:601 3:602 198.163.98/24 ISM-CA-MAN-C-163-98 C:CA 1:603 2:601 3:602 198.163.99/24 ISM-CA-MAN-C-163-99 C:CA 1:603 2:601 3:602 198.163.100/24 ISM-CA-MAN-C-163-100 C:CA 1:603 2:601 3:602 198.163.101/24 ISM-CA-MAN-C-163-101 C:CA 1:603 2:601 3:602 198.163.102/24 ISM-CA-MAN-C-163-102 C:CA 1:603 2:601 3:602 198.163.103/24 ISM-CA-MAN-C-163-103 C:CA 1:603 2:601 3:602 198.163.104/24 ISM-CA-MAN-C-163-104 C:CA 1:603 2:601 3:602 198.163.105/24 ISM-CA-MAN-C-163-105 C:CA 1:603 2:601 3:602 198.163.106/24 ISM-CA-MAN-C-163-106 C:CA 1:603 2:601 3:602 198.163.107/24 ISM-CA-MAN-C-163-107 C:CA 1:603 2:601 3:602 198.189.15/24 CSUNET-NORTH-C-189-15 C:US 1:2150 2:200 3:201 198.202.236/24 AVLNA C:US 1:2149 2:174 198.206.150/24 CSONET C:US 1:93 198.217.64/24 ALTABATES1 C:US 1:701 2:702 198.217.65/24 ALTABATES2 C:US 1:701 2:702 198.217.66/24 ALTABATES3 C:US 1:701 2:702 198.217.67/24 ALTABATES4 C:US 1:701 2:702 198.217.68/24 ALTABATES5 C:US 1:701 2:702 198.217.69/24 ALTABATES6 C:US 1:701 2:702 198.217.70/24 ALTABATES7 C:US 1:701 2:702 198.217.71/24 ALTABATES8 C:US 1:701 2:702 198.217.72/24 ALTABATES9 C:US 1:701 2:702 198.217.73/24 ALTABATES10 C:US 1:701 2:702 198.217.74/24 ALTABATES11 C:US 1:701 2:702 198.217.75/24 ALTABATES12 C:US 1:701 2:702 198.217.76/24 ALTABATES13 C:US 1:701 2:702 198.217.77/24 ALTABATES14 C:US 1:701 2:702 198.217.78/24 ALTABATES15 C:US 1:701 2:702 198.217.79/24 ALTABATES16 C:US 1:701 2:702 198.217.80/24 ALTABATES17 C:US 1:701 2:702 198.217.81/24 ALTABATES18 C:US 1:701 2:702 198.217.82/24 ALTABATES19 C:US 1:701 2:702 198.217.83/24 ALTABATES20 C:US 1:701 2:702 198.217.84/24 ALTABATES21 C:US 1:701 2:702 198.217.85/24 ALTABATES22 C:US 1:701 2:702 198.217.86/24 ALTABATES23 C:US 1:701 2:702 198.217.87/24 ALTABATES24 C:US 1:701 2:702 198.217.88/24 ALTABATES25 C:US 1:701 2:702 198.217.89/24 ALTABATES26 C:US 1:701 2:702 198.217.90/24 ALTABATES27 C:US 1:701 2:702 198.217.91/24 ALTABATES28 C:US 1:701 2:702 198.217.92/24 ALTABATES29 C:US 1:701 2:702 198.217.93/24 ALTABATES30 C:US 1:701 2:702 198.217.94/24 ALTABATES31 C:US 1:701 2:702 198.217.95/24 ALTABATES32 C:US 1:701 2:702 198.217.96/24 ALTABATES33 C:US 1:701 2:702 198.217.97/24 ALTABATES34 C:US 1:701 2:702 198.217.98/24 ALTABATES35 C:US 1:701 2:702 198.217.99/24 ALTABATES36 C:US 1:701 2:702 198.217.100/24 ALTABATES37 C:US 1:701 2:702 198.217.101/24 ALTABATES38 C:US 1:701 2:702 198.217.102/24 ALTABATES39 C:US 1:701 2:702 198.217.103/24 ALTABATES40 C:US 1:701 2:702 198.217.104/24 ALTABATES41 C:US 1:701 2:702 198.217.105/24 ALTABATES42 C:US 1:701 2:702 198.217.106/24 ALTABATES43 C:US 1:701 2:702 198.217.107/24 ALTABATES44 C:US 1:701 2:702 198.217.108/24 ALTABATES45 C:US 1:701 2:702 198.217.109/24 ALTABATES46 C:US 1:701 2:702 198.217.110/24 ALTABATES47 C:US 1:701 2:702 198.217.111/24 ALTABATES48 C:US 1:701 2:702 198.217.112/24 ALTABATES49 C:US 1:701 2:702 198.217.113/24 ALTABATES50 C:US 1:701 2:702 198.247.251/24 EXCHANGE-NET C:US 1:93 198.253.71/24 NCINET-C-253-71 C:US 1:22 198.253.72/24 NCINET-C-253-72 C:US 1:22 198.253.73/24 NCINET-C-253-73 C:US 1:22 198.253.74/24 NCINET-C-253-74 C:US 1:22 198.253.75/24 NCINET-C-253-75 C:US 1:22 198.253.76/24 NCINET-C-253-76 C:US 1:22 198.253.77/24 NCINET-C-253-77 C:US 1:22 198.253.78/24 NCINET-C-253-78 C:US 1:22 198.253.79/24 NCINET-C-253-79 C:US 1:22 198.253.118/24 NCINET-C-253-118 C:US 1:22 198.253.119/24 NCINET-C-253-119 C:US 1:22 198.253.120/24 NCINET-C-253-120 C:US 1:22 199.0.148/24 INFI-NET-C-0-148 C:US 1:1800 2:1240 199.0.149/24 INFI-NET-C-0-149 C:US 1:1800 2:1240 199.10.55/24 SAMHOU-ISR C:US 1:19 2:568 199.10.148/24 MIDAS C:US 1:19 2:568 199.10.149/24 C2DELNET2 C:US 1:19 2:568 199.33.243/24 ACES-2 C:US 1:1240 2:1800 199.35.15/24 CDCONNECTION C:US 1:2551 199.35.33/24 NEC-ELECTRONIC C:US 1:2551 199.79.152/24 VENTANA-NET C:US 1:1240 2:1800 199.97.28/24 PSINET-C5-28 C:US 1:2149 2:174 199.97.121/24 PSINET-C5-121 C:US 1:2149 2:174 199.97.162/24 PSINET-C5-162 C:US 1:2149 2:174 199.97.163/24 PSINET-C5-163 C:US 1:2149 2:174 199.97.180/24 PSINET-C5-180 C:US 1:2149 2:174 199.97.181/24 PSINET-C5-181 C:US 1:2149 2:174 199.97.182/24 PSINET-C5-182 C:US 1:2149 2:174 199.97.184/24 PSINET-C5 C:US 1:2149 2:174 199.97.196/24 PSINET-C-97-196 C:US 1:2149 2:174 199.97.197/24 PSINET-C-97-197 C:US 1:2149 2:174 202.14.66/24 WESTMEAD-2 C:AU 1:372 2:297 202.14.143/24 IPEXITG-C-14-143 C:AU 1:372 2:297 202.14.144/24 IPEXITG-C-14-144 C:AU 1:372 2:297 202.14.211/24 RBGSYD1 C:AU 1:372 2:297 202.14.212/24 RBGSYD2 C:AU 1:372 2:297 202.14.213/24 RBGSYD3 C:AU 1:372 2:297 202.14.214/24 RBGSYD4 C:AU 1:372 2:297 202.17.182/24 KCMNET C:JP 1:1240 2:1800 202.20.116/24 DIGICON-SG-C-20-116 C:SG 1:97 202.33.1/24 SADATA C:JP 1:2149 2:174 202.33.2/24 SSWNETJ C:JP 1:2149 2:174 Deletions: --192.92.101/24 VLINK C:US 1:600 --192.149.34/24 ENG-NORSTAN C:US 1:600 --193.140.21/24 9EYLUL-NET-C-140-21 C:TR 1:1800 2:1240 --193.140.22/24 9EYLUL-NET-C-140-22 C:TR 1:1800 2:1240 --193.140.23/24 9EYLUL-NET-C-140-23 C:TR 1:1800 2:1240 --198.91.64/24 IC-SQUARED1 C:US 1:86 2:279 --198.91.65/24 IC-SQUARED2 C:US 1:86 2:279 --198.91.66/24 IC-SQUARED3 C:US 1:86 2:279 --198.91.67/24 IC-SQUARED4 C:US 1:86 2:279 --198.91.68/24 IC-SQUARED5 C:US 1:86 2:279 --198.91.69/24 IC-SQUARED6 C:US 1:86 2:279 --198.91.70/24 IC-SQUARED7 C:US 1:86 2:279 --198.91.71/24 IC-SQUARED8 C:US 1:86 2:279 --198.91.72/24 IC-SQUARED9 C:US 1:86 2:279 --198.91.73/24 IC-SQUARED10 C:US 1:86 2:279 Expanded listing, sorted by country, then by organization: ========================================================== Australia --------- Australian Construction Services, 313 Adelaide Street, Brisbane, QLD, 4000, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) ---------- 147.211/16 AUSTCONSERV (AU) Bureau Services, Department of State Services,151 Royal Street, East Perth, WA, 6004, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) --------- 167.30/16 NET-WASCANNET (AU) Ipex ITG, Building 8A,Ipex Technology Park,George Street, Sandringham, VIC, 3191, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) ------------- 202.14.143/24 IPEXITG-C-14-143 (AU) 202.14.144/24 IPEXITG-C-14-144 (AU) Royal Botanic Gardens, Sydney, Mrs Macquaries Road, Sydney, NSW, 2000, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) ------------- 202.14.211/24 RBGSYD1 (AU) 202.14.212/24 RBGSYD2 (AU) 202.14.213/24 RBGSYD3 (AU) 202.14.214/24 RBGSYD4 (AU) Westmead Hospital / University of Sydney, Dr C. Liddle,Department of Medicine,Westmead Hospital, Westmead, NSW, 2145, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) ------------ 202.14.66/24 WESTMEAD-2 (AU) Woodside Group of Co., 1 Adelaide Tce, Perth, WA, 6000, AUSTRALIA 1:372 Nasa Science Network (FIX-West) 2:297 Nasa Science Network (FIX-East) --------- 158.89/16 WOODSIDE (AU) Canada ------ Information Systems Management Corporation, 400 Ellice Ave., Winnipeg, MB, R3B 3M3, CANADA 1:603 CA*net in Quebec 2:601 CA*net in Toronto 3:602 CA*net in Montreal ------------- 198.163.96/24 ISM-CA-MAN-C-163-96 (CA) 198.163.97/24 ISM-CA-MAN-C-163-97 (CA) 198.163.98/24 ISM-CA-MAN-C-163-98 (CA) 198.163.99/24 ISM-CA-MAN-C-163-99 (CA) 198.163.100/24 ISM-CA-MAN-C-163-100 (CA) 198.163.101/24 ISM-CA-MAN-C-163-101 (CA) 198.163.102/24 ISM-CA-MAN-C-163-102 (CA) 198.163.103/24 ISM-CA-MAN-C-163-103 (CA) 198.163.104/24 ISM-CA-MAN-C-163-104 (CA) 198.163.105/24 ISM-CA-MAN-C-163-105 (CA) 198.163.106/24 ISM-CA-MAN-C-163-106 (CA) 198.163.107/24 ISM-CA-MAN-C-163-107 (CA) Czech Republic -------------- University of Agriculture, Computing Centre, Zemedelska 1, Brno, 616 00, CZECH REPUBLIC 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1240 ICM-Pacific ------------- 193.84.180/24 VSZBR-B-C-84-180 (CZ) 193.84.181/24 VSZBR-B-C-84-181 (CZ) 193.84.182/24 VSZBR-B-C-84-182 (CZ) 193.84.183/24 VSZBR-B-C-84-183 (CZ) Egypt ----- Egyptian Universities Network, FRCU Computer Center, Supreme Council of Universities, Cairo University, Giza, EGYPT 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------ 193.227.3/24 EUN-C-227-3 (EG) 193.227.4/24 EUN-C-227-4 (EG) 193.227.30/24 EUN-C-227-30 (EG) 193.227.31/24 EUN-C-227-31 (EG) France ------ BRGM - Bureau de Recherches Geologiques et Minieres, Avenue de Concyr, BP 6009, 45060 Orleans CEDEX 2, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ----------- 193.56.4/24 FR-BRGM-ORL1 (FR) 193.56.5/24 FR-BRGM-ORL2 (FR) 193.56.6/24 FR-BRGM-ORL3 (FR) 193.56.7/24 FR-BRGM-ORL4 (FR) CERCO - Cerveau et cognition - Faculte de medecine, 133 route de Narbonne, 31062 Toulouse CEDEX, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.54.228/24 FR-CERCO (FR) CNAM CESDY, 29 rue du Marechal Joffre, 78000 Versailles, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.49.122/24 FR-CESDY (FR) Centre du Medicament, Faculte de pharmacie, 30, rue Lionnois, 54000 Nancy, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.49.137/24 FR-NANCY-CDM (FR) Ecole Superieure d'Electricite, Antenne de Rennes, Av. de la Boulais, BP 28, 35511 Cesson-Sevigne CEDEX, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------ 192.70.40/24 FNET-ESE-REN (FR) France Telecom, 9 Rue de Nanteuil, 75015 Paris, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.55.254/24 FR-ILLECOT (FR) Institut Universitaire de Technologie A Toulouse, Departement Informatique, 50 A, Chemin des Maraichers, F-31077 Toulouse CEDEX, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE -------------- 192.134.157/24 FNET-IUT-TLS (FR) Observatoire de Nancay - Station de Radioastronomie, 18330 Nancay, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.55.144/24 FR-OBSNANCAY (FR) SUPELEC Ecole Superieure d'Electricite, Antenne de Rennes, Av. de la Boulais, BP 28, 35511 Cesson-Sevigne CEDEX, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.54.192/24 FR-ESEREN2 (FR) 193.54.193/24 FR-ESEREN3 (FR) 193.54.194/24 FR-ESEREN4 (FR) Universite Claude Bernard Lyon 1, 69373 Lyon CEDEX 08, FRANCE 1:1133 CERN/DANTE 2:1800 ICM-Atlantic 3:1240 ICM-Pacific ------------- 193.48.219/24 ROCAD-ROCKF3 (FR) 193.54.220/24 ROCAD-ROCKF4 (FR) Universite Jean Moulin Lyon III, 1 rue de l'universite, 69239 Lyon CEDEX 02, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.49.100/24 LYON3-MANU (FR) 193.49.101/24 LYON3-QUAI (FR) Universite de Corse, Quartier Grossetti BP 52, 20250 Corti, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------ 193.48.28/24 UNIV-CORSE01 (FR) University of VALENCIENNES Campus, Le Mont Houy BP 311, 59304 Valenciennes, FRANCE 1:1800 ICM-Atlantic 2:1240 ICM-Pacific 3:1133 CERN/DANTE 4:1674 CERN/DANTE ------------- 193.50.193/24 FR-UVHC2 (FR) Germany ------- Programmentwicklungsgesellschaft fuer Microcomputer mbH (PEM), Vaihinger Strasse 49, D-70567 Stuttgart, GERMANY 1:1324 ANS New York City - DNSS 35 2:1800 ICM-Atlantic 3:1240 ICM-Pacific 4:1133 CERN/DANTE ------------ 193.141.1/24 PEM-CEBIT (DE) SystemPartner Moeller u. Hellwig, Suederstrasse 345b, D-20537 Hamburg, GERMANY 1:1324 ANS New York City - DNSS 35 2:1800 ICM-Atlantic 3:1240 ICM-Pacific 4:1133 CERN/DANTE ------------ 193.28.52/24 SYSPART-NET-C-28-52 (DE) 193.28.53/24 SYSPART-NET-C-28-53 (DE) Iceland ------- Hafnastraeti 91-95, 605 Akureyri, ICELAND 1:1800 ICM-Atlantic 2:1879 EUROPE-RS 3:1133 CERN/DANTE 4:1240 ICM-Pacific ------------ 193.4.252/24 IS-KEANET (IS) Japan ----- Himeji Dokkyo University, 7-2-1, Kami-ohno, Himeji, 670, JAPAN 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ---------- 163.134/16 HIMEJI-DU (JP) Kunitachi College of Music, 5-5-1 Kashiwa-cho, Tachikawa-shi, Tokyo, 190, JAPAN 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 202.17.182/24 KCMNET (JP) SA Data Service, Inc., 4-7-23, Minami-Senba, Chuo-ku, Osaka, 542, JAPAN 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ----------- 202.33.1/24 SADATA (JP) Sterling Software Japan, ShibaKoen Takahashi Building 7F., 8-12, Shibakoen 1-chome,Minato-ku, Tokyo, 105, JAPAN 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ----------- 202.33.2/24 SSWNETJ (JP) Netherlands ----------- DANTE Ltd., Lockton House, Clarendon Road, Cambridge, CB2 2BH, UNITED KINGDOM 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1674 CERN/DANTE 4:1240 ICM-Pacific ----------- 194.41.0/24 DANTE-NL-US (NL) ESD Netwerken bv, Apeldoorn, NETHERLANDS 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1674 CERN/DANTE 4:1240 ICM-Pacific ------------- 192.87.121/24 ESDNET (NL) Instituut voor Nederlandse Geschiedenis, Den Haag, NETHERLANDS 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1674 CERN/DANTE 4:1240 ICM-Pacific ------------- 192.87.123/24 ING-IP-NET (NL) Stichting SURF, P.O. Box 2290, NL-3500 GG Utrecht, NETHERLANDS 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1674 CERN/DANTE 4:1240 ICM-Pacific ------------ 192.87.18/24 SURF-LAN (NL) Vereniging van Samenwerkende Nederlandse Universiteiten, Utrecht, NETHERLANDS 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1674 CERN/DANTE 4:1240 ICM-Pacific ------------- 192.87.120/24 VSNU (NL) Norway ------ Datametrix A/S, Postboks 79 , Abildsoe, 1105 Oslo, NORWAY 1:1800 ICM-Atlantic 2:1879 EUROPE-RS 3:1133 CERN/DANTE 4:1240 ICM-Pacific ------------ 193.216.4/24 NO-DATAMETRIX1 (NO) Portugal -------- INESC-Porto, Lg. Mompilher, 22, P-4007 Porto CODEX, PORTUGAL 1:1800 ICM-Atlantic 2:1133 CERN/DANTE 3:1240 ICM-Pacific ------------- 193.136.51/24 INESCP-NET-SUPER (PT) Russian Federation ------------------ University Knowledge Networks Corp., 4, Izmailovskoje sh., Moscow, 105318, RUSSIAN FEDERATION 1:1800 ICM-Atlantic 2:1240 ICM-Pacific ------------ 193.233.5/24 UNICOR-HQ-LAN (RU) Singapore --------- Digicon Exploration, Ltd., 37 Jalan Pemempin, #06-01, 2057, SINGAPORE 1:97 JvNCnet Regional Network ------------- 202.20.116/24 DIGICON-SG-C-20-116 (SG) Sweden ------ Goteborgs Universitet, Datanamnden, Vasaparken, S-411 24 Goteborg, SWEDEN 1:1800 ICM-Atlantic 2:1879 EUROPE-RS 3:1133 CERN/DANTE 4:1240 ICM-Pacific ------------ 193.10.79/24 SE-GU (SE) Switzerland ----------- Active-Net BBS, Eschenweg 4, CH-8645 Jona, SWITZERLAND 1:701 Alternet 2:1800 ICM-Atlantic ------------- 193.73.204/24 ACTIVE (CH) CERN, European Laboratory for Particle Physics, CH-1211 Geneva 23, SWITZERLAND 1:1133 CERN/DANTE 2:1800 ICM-Atlantic 3:1240 ICM-Pacific ------------- 192.91.241/24 CERN-CNET28 (CH) 194.12.128/24 CERN-C-12-128 (CH) 194.12.129/24 CERN-C-12-129 (CH) 194.12.130/24 CERN-C-12-130 (CH) 194.12.131/24 CERN-C-12-131 (CH) 194.12.132/24 CERN-C-12-132 (CH) 194.12.133/24 CERN-C-12-133 (CH) 194.12.134/24 CERN-C-12-134 (CH) 194.12.135/24 CERN-C-12-135 (CH) University of Lausanne, Lausanne, SWITZERLAND 1:1133 CERN/DANTE 2:1674 CERN/DANTE 3:1800 ICM-Atlantic ------------- 192.42.200/24 LUNET-NET21 (CH) Turkey ------ 9 Eylul University, Fen Edebiyat Faculty, Izmir, 35000, TURKEY 1:1800 ICM-Atlantic 2:1240 ICM-Pacific ------------- 193.140.25/24 9EYLUL-NET-C-140-25 (TR) 193.140.26/24 9EYLUL-NET-C-140-26 (TR) 193.140.27/24 9EYLUL-NET-C-140-27 (TR) United States ------------- ACES Research Inc, PO BOX 14546, Tucson, AZ 85711, USA 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 199.33.243/24 ACES-2 (US) AVL North America, 41169 Vincenti Court, Novi, MI 48375, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI -------------- 198.202.236/24 AVLNA (US) Alta Bates Medical Center, 2850 Telegraph Avenue, Third Floor, Berkeley, CA 94705, USA 1:701 Alternet 2:702 Alternet ------------- 198.217.64/24 ALTABATES1 (US) 198.217.65/24 ALTABATES2 (US) 198.217.66/24 ALTABATES3 (US) 198.217.67/24 ALTABATES4 (US) 198.217.68/24 ALTABATES5 (US) 198.217.69/24 ALTABATES6 (US) 198.217.70/24 ALTABATES7 (US) 198.217.71/24 ALTABATES8 (US) 198.217.72/24 ALTABATES9 (US) 198.217.73/24 ALTABATES10 (US) 198.217.74/24 ALTABATES11 (US) 198.217.75/24 ALTABATES12 (US) 198.217.76/24 ALTABATES13 (US) 198.217.77/24 ALTABATES14 (US) 198.217.78/24 ALTABATES15 (US) 198.217.79/24 ALTABATES16 (US) 198.217.80/24 ALTABATES17 (US) 198.217.81/24 ALTABATES18 (US) 198.217.82/24 ALTABATES19 (US) 198.217.83/24 ALTABATES20 (US) 198.217.84/24 ALTABATES21 (US) 198.217.85/24 ALTABATES22 (US) 198.217.86/24 ALTABATES23 (US) 198.217.87/24 ALTABATES24 (US) 198.217.88/24 ALTABATES25 (US) 198.217.89/24 ALTABATES26 (US) 198.217.90/24 ALTABATES27 (US) 198.217.91/24 ALTABATES28 (US) 198.217.92/24 ALTABATES29 (US) 198.217.93/24 ALTABATES30 (US) 198.217.94/24 ALTABATES31 (US) 198.217.95/24 ALTABATES32 (US) 198.217.96/24 ALTABATES33 (US) 198.217.97/24 ALTABATES34 (US) 198.217.98/24 ALTABATES35 (US) 198.217.99/24 ALTABATES36 (US) 198.217.100/24 ALTABATES37 (US) 198.217.101/24 ALTABATES38 (US) 198.217.102/24 ALTABATES39 (US) 198.217.103/24 ALTABATES40 (US) 198.217.104/24 ALTABATES41 (US) 198.217.105/24 ALTABATES42 (US) 198.217.106/24 ALTABATES43 (US) 198.217.107/24 ALTABATES44 (US) 198.217.108/24 ALTABATES45 (US) 198.217.109/24 ALTABATES46 (US) 198.217.110/24 ALTABATES47 (US) 198.217.111/24 ALTABATES48 (US) 198.217.112/24 ALTABATES49 (US) 198.217.113/24 ALTABATES50 (US) BALR Corporation, 1520 Kensington #105, Oakbrook, IL 60521, USA 1:701 Alternet 2:702 Alternet ----------- 198.6.15/24 BALR-NET (US) Brooklyn Union Gas Company, One Metrotech Center, 14th Floor, Brooklyn, NY 11202, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------ 198.74.13/24 BUG-6 (US) CalComp, 2411 W. La Palma Ave., Anahaim, CA 92803, USA 1:1740 CERFnet --------- 146.69/16 CALCOMP1 (US) California Public Utilities Commission, 505 Van Ness Avenue, San Francisco, CA 94102, USA 1:200 BARRNet 2:201 BARRNet --------- 162.15/16 CPUC (US) Central States Health & Life Co. of Omaha, 1212 N. 96th Street, Omaha, NE 68114, USA 1:93 MIDnet -------------- 198.206.150/24 CSONET (US) Compact Disc Connection, 1176A Aster Ave, Sunnyvale, CA 94086, USA 1:2551 NETCOM ------------ 199.35.15/24 CDCONNECTION (US) Computer Systems Design Company, 735 Highland Avenue, Boulder, CO 80302, USA 1:1332 ANS Denver - DNSS 99 ------------ 198.80.11/24 CSDCO-DMZ (US) Council on International Educational Exchange, 205 East 42nd Street, 14th Floor, New York, NY 10017, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.180/24 PSINET-C5-180 (US) Defense Information Systems Agency, 3701 N. Fairfax Drive, Arlington, VA 22203-1713, USA 1:19 Milnet (FIX-East) 2:568 Milnet (FIX-West) ------------- 199.10.149/24 C2DELNET2 (US) Eastern New Mexico University, Computer Services Station #15, Portales, NM 88130, USA 1:209 Westnet Regional Network (Colorado Attachment) - ENSS 141 2:210 Westnet Regional Network (Utah Attachment) - ENSS 142 -------------- 192.207.226/24 ENMU-2 (US) First Quadrant, 800 East Colorado Ave, Suite 900, Pasadena, CA 91101, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.182/24 PSINET-C5-182 (US) GTE Government Systems Corp., 400 Park Plaza, PO Box 13279, Research Triangle Park, NC 27709, USA 1:86 SURANET Regional Network (College Park) 2:279 SURANET Regional Network (Georgia Tech) -------------- 192.133.124/24 GTE-GSC-NCS1 (US) GTE Laboratories, 40 Sylvan Rd., Waltham, MA 02254, USA 1:560 NEARnet Regional Network 2:701 Alternet --------- 143.91/16 GTETELOPS-LAN (US) GTE Mobilnet, 4440 Willow Road, Pleasanton, CA 94588, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.163/24 PSINET-C5-163 (US) Galaxy Computer Services, Inc., 551 W. Cordova Rd., Suite 202, Santa Fe, NM 87501, USA 1:209 Westnet Regional Network (Colorado Attachment) - ENSS 141 2:210 Westnet Regional Network (Utah Attachment) - ENSS 142 -------------- 198.133.232/24 GCSI (US) Hospital for Special Surgery, 535 East 70th Street, New York, NY 10021, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.162/24 PSINET-C5-162 (US) Lightscape Graphics Software, 4040 Moorpark Ave, Suite 108, San Jose, CA 95117, USA 1:200 BARRNet 2:201 BARRNet ------------- 198.92.131/24 NET-LIGHTSCAPE (US) Murphy & Durieu Data Systems, 120 Broadway, 17th Floor, New York, NY 10271, USA 1:701 Alternet 2:702 Alternet ----------- 198.6.14/24 MURPHNET2 (US) NASA Johnson Space Center, Houston, TX 77058, USA 1:771 Nasa Science Network (Houston) 2:372 Nasa Science Network (FIX-West) 3:297 Nasa Science Network (FIX-East) ------------ 198.27.51/24 JSC-B30S51 (US) NAVSURFWARCENDIV, Bldg 3168, Code 8061JV, 300 Highway 361, Crane, IN 47522-5001, USA 1:19 Milnet (FIX-East) 2:568 Milnet (FIX-West) ------------- 199.10.148/24 MIDAS (US) NCCOSC RDT&E DIV, Code 0294, San Diego, CA 92152-6199, USA 1:22 NOSC (Naval Ocean Systems Center) ------------- 198.253.71/24 NCINET-C-253-71 (US) 198.253.72/24 NCINET-C-253-72 (US) 198.253.73/24 NCINET-C-253-73 (US) 198.253.74/24 NCINET-C-253-74 (US) 198.253.75/24 NCINET-C-253-75 (US) 198.253.76/24 NCINET-C-253-76 (US) 198.253.77/24 NCINET-C-253-77 (US) 198.253.78/24 NCINET-C-253-78 (US) 198.253.79/24 NCINET-C-253-79 (US) 198.253.118/24 NCINET-C-253-118 (US) 198.253.119/24 NCINET-C-253-119 (US) 198.253.120/24 NCINET-C-253-120 (US) NEC Electronics, 401 Ellis St., Mt. View, CA 94039-7241, USA 1:2551 NETCOM ------------ 199.35.33/24 NEC-ELECTRONIC (US) National Defense University, Ft. McNair, Washington, DC, DC 20319, USA 1:279 SURANET Regional Network (Georgia Tech) ------------ 198.76.85/24 NDU1-C-76-85 (US) OARnet, 1224 Kinnear Rd, Columbus, OH 43235, USA 1:600 OARNET, Cleveland, OH ------------- 198.30.208/24 OAR208 (US) ParaGraph Int'l, 1309 S Mary Ave, #150, Sunnyvalle, CA 94087, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.184/24 PSINET-C5 (US) Rochester General Hospital, 1425 Portland Avenue, Rochester, NY 14621, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI --------- 162.30/16 RGHNET (US) San Joaquin Delta College, 5151 Pacific Avenue, Stockton, CA 95207, USA 1:2150 CSUNET-SW 2:200 BARRNet 3:201 BARRNet ------------- 198.189.15/24 CSUNET-NORTH-C-189-15 (US) Schulyer-Chemung-Tioga BOCES, 431 Philo Road, Elmira, NY 14903, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.196/24 PSINET-C-97-196 (US) 199.97.197/24 PSINET-C-97-197 (US) Senate of Pennsylvania, B-51 Main Capitol Building, Harrisburg, PA 17120-0030, USA 1:204 PSCNET Regional Network 2:1206 PSCNET Regional Network -------------- 192.189.102/24 RSEN (US) Southwest Network Services, 9130 Jollyville Rd, Suite 200, Austin, TX 78759, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 198.62.192/24 SNS-NET1 (US) 198.62.193/24 SNS-NET2 (US) 198.62.194/24 SNS-NET3 (US) Sphinx Communications, 550 Franklin Ave., Brooklyn, NY 11238, USA 1:701 Alternet 2:702 Alternet ---------- 198.6.3/24 SHEPS (US) State Library of Florida, Division of Library and Information Services, 00 South Bronough Street, Tallahassee, FL, USA 1:279 SURANET Regional Network (Georgia Tech) 2:86 SURANET Regional Network (College Park) ------------- 198.78.243/24 FLLIB-NET1 (US) Steinmayr Plug-n-Play Programming Inc., One Galleria Blvd, Suite 950, Metairie, LA 70003, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------ 199.97.28/24 PSINET-C5-28 (US) Syracuse City School District, 725 Harrison Street, Syracuse, NY 13210, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------ 198.36.17/24 SCSDNET17 (US) 198.36.18/24 SCSDNET18 (US) 198.36.19/24 SCSDNET19 (US) 198.36.20/24 SCSDNET20 (US) 198.36.21/24 SCSDNET21 (US) 198.36.22/24 SCSDNET22 (US) 198.36.23/24 SCSDNET23 (US) 198.36.24/24 SCSDNET24 (US) 198.36.25/24 SCSDNET25 (US) 198.36.26/24 SCSDNET26 (US) 198.36.27/24 SCSDNET27 (US) The Router Exchange, 938 No. 70th Suite 124, Lincoln, NE 68505, USA 1:93 MIDnet -------------- 198.247.251/24 EXCHANGE-NET (US) USAG-DOIM, AFZG-IM-IN, Fort Sam Houston, TX 78234, USA 1:19 Milnet (FIX-East) 2:568 Milnet (FIX-West) ------------ 199.10.55/24 SAMHOU-ISR (US) United Video Satellite Group, One Technology Plaza, 7140 South Lewis Ave, Tulsa, OK 74136, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.181/24 PSINET-C5-181 (US) Ventana Corporation, 1430 East Fort Lowell Road, Tucson, AZ 85719, USA 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 199.79.152/24 VENTANA-NET (US) WYVERN TECHNOLOGIES, 1020 RALEIGH AVE, NORFOLK, VA 23507, USA 1:1800 ICM-Atlantic 2:1240 ICM-Pacific ------------ 199.0.148/24 INFI-NET-C-0-148 (US) 199.0.149/24 INFI-NET-C-0-149 (US) Westchester Library System, 8 Westchester Plaza, Elmsford, NY 10523, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 199.97.121/24 PSINET-C5-121 (US) ========================================================== The configuration reports which reflect today's update will be available for anonymous ftp on nic.merit.edu by 08:00 EST : configuration reports -- nic.merit.edu:nsfnet/announced.networks: as-as.now as-gw.now ans_core.now country.now net-comp.now nets.doc nets.tag.now nets.unl.now NSS routing software configuration files -- nic.merit.edu:nsfnet/backbone.configuration: nss<NSS number>.t3p Information is also avaiable through the PRDB whois server. Type "whois -h prdb.merit.edu help" for details. -------------------------------------------------------------------------- Please send all requests for configuration changes to nsfnet-admin(a)merit.edu using the NSFNET configuration forms. The forms are available on-line from the nic.merit.edu machine. Use ftp and the anonymous login to get on the machine. Do a "cd nsfnet/announced.networks" and get the files template.net, template.net.README, template.gate, and template.as. In order to more efficiently process your requests, we have moved to a system which requires the use of template.net (NACR) version 7.0 ******************************* --Steve Widmayer Merit/NSFNET skw(a)merit.edu --Enke Chen Merit/NSFNET enke(a)merit.edu --Steven J. Richardson Merit/NSFNET sjr(a)merit.edu

1 0

CERT Advisory - Ongoing Network Monitoring Attacks
by CERT Advisory 04 Feb '94

04 Feb '94

============================================================================= CA-94:01 CERT Advisory February 3, 1994 Ongoing Network Monitoring Attacks ----------------------------------------------------------------------------- In the past week, CERT has observed a dramatic increase in reports of intruders monitoring network traffic. Systems of some service providers have been compromised, and all systems that offer remote access through rlogin, telnet, and FTP are at risk. Intruders have already captured access information for tens of thousands of systems across the Internet. The current attacks involve a network monitoring tool that uses the promiscuous mode of a specific network interface, /dev/nit, to capture host and user authentication information on all newly opened FTP, telnet, and rlogin sessions. In the short-term, CERT recommends that all users on sites that offer remote access change passwords on any network-accessed account. In addition, all sites having systems that support the /dev/nit interface should disable this feature if it is not used and attempt to prevent unauthorized access if the feature is necessary. A procedure for accomplishing this is described in Section III.B.2 below. Systems known to support the interface are SunOS 4.x (Sun3 and Sun4 architectures) and Solbourne systems; there may be others. Sun Solaris systems do not support the /dev/nit interface. If you have a system other than Sun or Solbourne, contact your vendor to find if this interface is supported. While the current attack is specific to /dev/nit, the short-term workaround does not constitute a solution. The best long-term solution currently available for this attack is to reduce or eliminate the transmission of reusable passwords in clear-text over the network. ----------------------------------------------------------------------------- I. Description Root-compromised systems that support a promiscuous network interface are being used by intruders to collect host and user authentication information visible on the network. The intruders first penetrate a system and gain root access through an unpatched vulnerability (solutions and workarounds for these vulnerabilities have been described in previous CERT advisories, which are available anonymous FTP from info.cert.org) The intruders then run a network monitoring tool that captures up to the first 128 keystrokes of all newly opened FTP, telnet, and rlogin sessions visible within the compromised system's domain. These keystrokes usually contain host, account, and password information for user accounts on other systems; the intruders log these for later retrieval. The intruders typically install Trojan horse programs to support subsequent access to the compromised system and to hide their network monitoring process. II. Impact All connected network sites that use the network to access remote systems are at risk from this attack. All user account and password information derived from FTP, telnet, and rlogin sessions and passing through the same network as the compromised host could be disclosed. III. Approach There are three steps in CERT's recommended approach to the problem: - Detect if the network monitoring tool is running on any of your hosts that support a promiscuous network interface. - Protect against this attack either by disabling the network interface for those systems that do not use this feature or by attempting to prevent unauthorized use of the feature on systems where this interface is necessary. - Scope the extent of the attack and recover in the event that the network monitoring tool is discovered. A. Detection The network monitoring tool can be run under a variety of process names and log to a variety of filenames. Thus, the best method for detecting the tool is to look for 1) Trojan horse programs commonly used in conjunction with this attack, 2) any suspect processes running on the system, and 3) the unauthorized use of /dev/nit. 1) Trojan horse programs: The intruders have been found to replace one or more of the following programs with a Trojan horse version in conjunction with this attack: /usr/etc/in.telnetd and /bin/login - Used to provide back-door access for the intruders to retrieve information /bin/ps - Used to disguise the network monitoring process Because the intruders install Trojan horse variations of standard UNIX commands, CERT recommends not using other commands such as the standard UNIX sum(1) or cmp(1) commands to locate the Trojan horse programs on the system until these programs can be restored from distribution media, run from read-only media (such as a mounted CD-ROM), or verified using cryptographic checksum information. In addition to the possibility of having the checksum programs replaced by the intruders, the Trojan horse programs mentioned above may have been engineered to produce the same standard checksum and timestamp as the legitimate version. Because of this, the standard UNIX sum(1) command and the timestamps associated with the programs are not sufficient to determine whether the programs have been replaced. CERT recommends that you use both the /usr/5bin/sum and /bin/sum commands to compare against the distribution media and assure that the programs have not been replaced. The use of cmp(1), MD5, Tripwire (only if the baseline checksums were created on a distribution system), and other cryptographic checksum tools are also sufficient to detect these Trojan horse programs, provided these programs were not available for modification by the intruder. If the distribution is available on CD-ROM or other read-only device, it may be possible to compare against these volumes or run programs off these media. 2) Suspect processes: Although the name of the network monitoring tool can vary from attack to attack, it is possible to detect a suspect process running as root using ps(1) or other process-listing commands. Until the ps(1) command has been verified against distribution media, it should not be relied upon--a Trojan horse version is being used by the intruders to hide the monitoring process. Some process names that have been observed are sendmail, es, and in.netd. The arguments to the process also provide an indication of where the log file is located. If the "-F" flag is set on the process, the filename following indicates the location of the log file used for the collection of authentication information for later retrieval by the intruders. 3) Unauthorized use of /dev/nit: If the network monitoring tool is currently running on your system, it is possible to detect this by checking for unauthorized use of the /dev/nit interface. CERT has created a minimal tool for this purpose. The source code for this tool is available via anonymous FTP on info.cert.org in the /pub/tools/cpm directory or on ftp.uu.net in the /pub/security/cpm directory as cpm.1.0.tar.Z. The checksum information is: Filename Standard UNIX Sum System V Sum -------------- ----------------- ------------ cpm.1.0.tar.Z: 11097 6 24453 12 MD5 Checksum MD5 (cpm.1.0.tar.Z) = e29d43f3a86e647f7ff2aa453329a155 This archive contains a readme file, also included as Appendix C of this advisory, containing instructions on installing and using this detection tool. B. Prevention There are two actions that are effective in preventing this attack. A long-term solution requires eliminating transmission of clear-text passwords on the network. For this specific attack, however, a short-term workaround exists. Both of these are described below. 1) Long-term prevention: CERT recognizes that the only effective long-term solution to prevent these attacks is by not transmitting reusable clear-text passwords on the network. CERT has collected some information on relevant technologies. This information is included as Appendix B in this advisory. Note: These solutions will not protect against transient or remote access transmission of clear-text passwords through the network. Until everyone connected to your network is using the above technologies, your policy should allow only authorized users and programs access to promiscuous network interfaces. The tool described in Section III.A.3 above may be helpful in verifying this restricted access. 2) Short-term workaround: Regardless of whether the network monitoring software is detected on your system, CERT recommends that ALL SITES take action to prevent unauthorized network monitoring on their systems. You can do this either by removing the interface, if it is not used on the system or by attempting to prevent the misuse of this interface. For systems other than Sun and Solbourne, contact your vendor to find out if promiscuous mode network access is supported and, if so, what is the recommended method to disable or monitor this feature. For SunOS 4.x and Solbourne systems, the promiscuous interface to the network can be eliminated by removing the /dev/nit capability from the kernel. The procedure for doing so is outlined below (see your system manuals for more details). Once the procedure is complete, you may remove the device file /dev/nit since it is no longer functional. Procedure for removing /dev/nit from the kernel: 1. Become root on the system. 2. Apply "method 1" as outlined in the System and Network Administration manual, in the section, "Sun System Administration Procedures," Chapter 9, "Reconfiguring the System Kernel." Excerpts from the method are reproduced below: # cd /usr/kvm/sys/sun[3,3x,4,4c]/conf # cp CONFIG_FILE SYS_NAME [Note that at this step, you should replace the CONFIG_FILE with your system specific configuration file if one exists.] # chmod +w SYS_NAME # vi SYS_NAME # # The following are for streams NIT support. NIT is used by # etherfind, traffic, rarpd, and ndbootd. As a rule of thumb, # NIT is almost always needed on a server and almost never # needed on a diskless client. # pseudo-device snit # streams NIT pseudo-device pf # packet filter pseudo-device nbuf # NIT buffering module [Comment out the preceding three lines; save and exit the editor before proceeding.] # config SYS_NAME # cd ../SYS_NAME # make # mv /vmunix /vmunix.old # cp vmunix /vmunix # /etc/halt > b [This step will reboot the system with the new kernel.] [NOTE that even after the new kernel is installed, you need to take care to ensure that the previous vmunix.old , or other kernel, is not used to reboot the system.] C. Scope and recovery If you detect the network monitoring software at your site, CERT recommends following three steps to successfully determine the scope of the problem and to recover from this attack. 1. Restore the system that was subjected to the network monitoring software. The systems on which the network monitoring and/or Trojan horse programs are found have been compromised at the root level; your system configuration may have been altered. See Appendix A of this advisory for help with recovery. 2. Consider changing router, server, and privileged account passwords due to the wide-spread nature of these attacks. Since this threat involves monitoring remote connections, take care to change these passwords using some mechanism other than remote telnet, rlogin, or FTP access. 3. Urge users to change passwords on local and remote accounts. Users who access accounts using telnet, rlogin, or FTP either to or from systems within the compromised domain should change their passwords after the intruder's network monitor has been disabled. 4. Notify remote sites connected from or through the local domain of the network compromise. Encourage the remote sites to check their systems for unauthorized activity. Be aware that if your site routes network traffic between external domains, both of these domains may have been compromised by the network monitoring software. --------------------------------------------------------------------------- The CERT Coordination Center thanks the members of the FIRST community as well as the many technical experts around the Internet who participated in creating this advisory. Special thanks to Eugene Spafford of Purdue University for his contributions. --------------------------------------------------------------------------- If you believe that your system has been compromised, contact the CERT Coordination Center or your representative in Forum of Incident Response and Security Teams (FIRST). Internet E-mail: cert(a)cert.org Telephone: 412-268-7090 (24-hour hotline) CERT personnel answer 8:30 a.m.-5:00 p.m. EST(GMT-5)/EDT(GMT-4), and are on call for emergencies during other hours. CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Past advisories, information about FIRST representatives, and other information related to computer security are available for anonymous FTP from info.cert.org. --------------------------------------------------------------------------- Appendix A: RECOVERING FROM A UNIX ROOT COMPROMISE A. Immediate recovery technique 1) Disconnect from the network or operate the system in single- user mode during the recovery. This will keep users and intruders from accessing the system. 2) Verify system binaries and configuration files against the vendor's media (do not rely on timestamp information to provide an indication of modification). Do not trust any verification tool such as cmp(1) located on the compromised system as it, too, may have been modified by the intruder. In addition, do not trust the results of the standard UNIX sum(1) program as we have seen intruders modify system files in such a way that the checksums remain the same. Replace any modified files from the vendor's media, not from backups. -- or -- Reload your system from the vendor's media. 3) Search the system for new or modified setuid root files. find / -user root -perm -4000 -print If you are using NFS or AFS file systems, use ncheck to search the local file systems. ncheck -s /dev/sd0a 4) Change the password on all accounts. 5) Don't trust your backups for reloading any file used by root. You do not want to re-introduce files altered by an intruder. B. Improving the security of your system 1) CERT Security Checklist Using the checklist will help you identify security weaknesses or modifications to your systems. The CERT Security Checklist is based on information gained from computer security incidents reported to CERT. It is available via anonymous FTP from info.cert.org in the file pub/tech_tips/security_info. 2) Security Tools Use security tools such as COPS and Tripwire to check for security configuration weaknesses and for modifications made by intruders. We suggest storing these security tools, their configuration files, and databases offline or encrypted. TCP daemon wrapper programs provide additional logging and access control. These tools are available via anonymous FTP from info.cert.org in the pub/tools directory. 3) CERT Advisories Review past CERT advisories (both vendor-specific and generic) and install all appropriate patches or workarounds as described in the advisories. CERT advisories and other security-related information are available via anonymous FTP from info.cert.org in the pub/cert_advisories directory. To join the CERT Advisory mailing list, send a request to: cert-advisory-request(a)cert.org Please include contact information, including a telephone number. CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 Copyright (c) Carnegie Mellon University 1994 --------------------------------------------------------------------------- Appendix B: ONE-TIME PASSWORDS Given today's networked environments, CERT recommends that sites concerned about the security and integrity of their systems and networks consider moving away from standard, reusable passwords. CERT has seen many incidents involving Trojan network programs (e.g., telnet and rlogin) and network packet sniffing programs. These programs capture clear-text hostname, account name, password triplets. Intruders can use the captured information for subsequent access to those hosts and accounts. This is possible because 1) the password is used over and over (hence the term "reusable"), and 2) the password passes across the network in clear text. Several authentication techniques have been developed that address this problem. Among these techniques are challenge-response technologies that provide passwords that are only used once (commonly called one-time passwords). This document provides a list of sources for products that provide this capability. The decision to use a product is the responsibility of each organization, and each organization should perform its own evaluation and selection. I. Public Domain packages S/KEY(TM) The S/KEY package is publicly available (no fee) via anonymous FTP from: thumper.bellcore.com /pub/nmh directory There are three subdirectories: skey UNIX code and documents on S/KEY. Includes the change needed to login, and stand-alone commands (such as "key"), that computes the one-time password for the user, given the secret password and the S/KEY command. dos DOS or DOS/WINDOWS S/KEY programs. Includes DOS version of "key" and "termkey" which is a TSR program. mac One-time password calculation utility for the Mac. II. Commercial Products Secure Net Key (SNK) (Do-it-yourself project) Digital Pathways, Inc. 201 Ravendale Dr. Mountainview, Ca. 94043-5216 USA Phone: 415-964-0707 Fax: (415) 961-7487 Products: handheld authentication calculators (SNK004) serial line auth interruptors (guardian) Note: Secure Net Key (SNK) is des-based, and therefore restricted from US export. Secure ID (complete turnkey systems) Security Dynamics One Alewife Center Cambridge, MA 02140-2312 USA Phone: 617-547-7820 Fax: (617) 354-8836 Products: SecurID changing number authentication card ACE server software SecureID is time-synchronized using a 'proprietary' number generation algorithm WatchWord and WatchWord II Racal-Guardata 480 Spring Park Place Herndon, VA 22070 703-471-0892 1-800-521-6261 ext 217 Products: Watchword authentication calculator Encrypting modems Alpha-numeric keypad, digital signature capability SafeWord Enigma Logic, Inc. 2151 Salvio #301 Concord, CA 94520 510-827-5707 Fax: (510)827-2593 Products: DES Silver card authentication calculator SafeWord Multisync card authentication calculator Available for UNIX, VMS, MVS, MS-DOS, Tandum, Stratus, as well as other OS versions. Supports one-time passwords and super smartcards from several vendors. --------------------------------------------------------------------------- Appendix C: cpm 1.0 README FILE cpm - check for network interfaces in promiscuous mode. Copyright (c) Carnegie Mellon University 1994 Thursday Feb 3 1994 CERT Coordination Center Software Engineering Institute Carnegie Mellon University Pittsburgh, PA 15213-3890 This program is free software; you can distribute it and/or modify it as long as you retain the Carnegie Mellon copyright statement. It can be obtained via anonymous FTP from info.cert.org:pub/tools/cpm.tar.Z. This program is distributed WITHOUT ANY WARRANTY; without the IMPLIED WARRANTY of merchantability or fitness for a particular purpose. This package contains: README MANIFEST cpm.1 cpm.c To create cpm under SunOS, type: % cc -Bstatic -o cpm cpm.c On machines that support dynamic loading, such as Sun's, CERT recommends that programs be statically linked so that this feature is disabled. CERT recommends that after you install cpm in your favorite directory, you take measures to ensure the integrity of the program by noting the size and checksums of the source code and resulting binary. The following is an example of the output of cpm and its exit status. Running cpm on a machine where both the le0 and le2 interfaces are in promiscuous mode, under csh(1): % cpm le0 le2 % echo $status 2 % Running cpm on a machine where no interfaces are in promiscuous mode, under csh(1): % cpm % echo $status 0 %

1 0

Re: !! (fwd)
by Richard Colella 02 Feb '94

02 Feb '94

Scott, > I have asked the question many time. "What is a provider?". Once the > CIDR allocation started the "Providers" came out of the woodworks. > No one so far has given an answer to the question that the majority can > agree with. I will not be at the regional tech meeting in CA but Mark will. > I don't know a group better suited to answer the question that established > providers. Do us a favor and come up with a proposed answer to "What is a > provider". I will work with NSF and Postel to make it policy. This would > make our life easier. I think we have to be very careful here. When we make policy that adversely affects someone's business interests we're just begging for a suit. Especially with the *perceived* "shortage" or IPv4 addresses. It seems to me that it would be very difficult to exclude anybody from the category of "provider" (for the purpose of giving him or her addresses) who has even the flimsiest claim to being one. Perhaps some sliding scale based on demonstrated need would work. But it would have to be conservative (liberal?) and easily quantified to make it defensible. --Richard

3 3

ANS NOC move
by John Labbe 01 Feb '94

01 Feb '94

The ANS NOC (formerly part of Merit) has been located on the North Campus of the University of Michigan for many years now. Many of you, have visited us at one time or another. We have grown considerably in the past two years and the University was not able to accomodate our growing space needs. So with mixed feelings, we started looking for another suitable space in Ann Arbor. I am pleased to report that on February 7, the ANS Network Operations Center will be moving to our new location, where we have over 11,000 square feet of freshly renovated space. Our new address will be: Advanced Network & Services, Inc. 100 Phoenix Dr. Ann Arbor, MI 48108-2202 Our 800 number will remain the same; 800-456-6300. The local NOC number, however, will change to 313-677-7333. The new general number for ANS in Ann Arbor will be 313-677-7300. We will be staging the moving of the various NOC systems, equipment and staff, so as to assure a smooth transistion and prevent any service disruptions. And you are all, of course, invited to see our new place... Regards, John

1 0

Additions to the NSFNET policy-based routing database
by Steven K. Widmayer 01 Feb '94

01 Feb '94

The following changes have been made to the NSFNET policy-based routing database and will be installed on the backbone by 08:00 EST : Total = */8 + */16 + */24 + Other Configured Networks 23659 = 28 4353 19278 0 Added Networks 166 = 0 5 161 0 Deleted Networks 1 = 0 1 0 0 IP address Net name Country Priority:AS ---------- -------- ------- ----------- 131.141/16 DRE-LAN2-B-141 C:CA 1:2493 135.131/16 NCRWIN13 C:US 1:2149 2:174 144.67/16 UNIONCARBIDE-0 C:US 1:1329 144.68/16 UNIONCARBIDE-1 C:US 1:1329 167.218/16 WISC-DILHR C:US 1:1225 2:267 3:266 192.21.10/24 FORMTEK C:US 1:204 2:1206 192.52.109/24 MICROWARE C:US 1:1323 192.92.40/24 INFOLAN-C20 C:US 1:2149 2:174 192.126.1/24 HTC-NMC-NET3 C:FI 1:701 2:1800 192.126.6/24 HTC-NET4 C:FI 1:701 2:1800 192.148.168/24 FORMTEK1 C:US 1:204 2:1206 192.148.169/24 FORMTEK2 C:US 1:204 2:1206 192.163.158/24 HTC-NET6 C:FI 1:701 2:1800 192.215.128/24 CERFNET-128 C:US 1:1740 192.215.129/24 CERFNET-129 C:US 1:1740 192.215.130/24 CERFNET-130 C:US 1:1740 192.215.131/24 CERFNET-131 C:US 1:1740 192.215.132/24 CERFNET-132 C:US 1:1740 192.215.133/24 CERFNET-133 C:US 1:1740 192.215.134/24 CERFNET-134 C:US 1:1740 192.215.135/24 CERFNET-135 C:US 1:1740 192.215.136/24 CERFNET-136 C:US 1:1740 192.215.137/24 CERFNET-137 C:US 1:1740 192.215.138/24 CERFNET-138 C:US 1:1740 192.215.139/24 CERFNET-139 C:US 1:1740 192.215.140/24 CERFNET-140 C:US 1:1740 192.215.141/24 CERFNET-141 C:US 1:1740 192.215.142/24 CERFNET-142 C:US 1:1740 192.215.143/24 CERFNET-143 C:US 1:1740 192.215.148/24 CERFNET-148 C:US 1:1740 192.215.150/24 CERFNET-150 C:US 1:1740 192.216.130/24 TANDEM-216-130 C:US 1:200 2:201 192.216.131/24 TANDEM-216-131 C:US 1:200 2:201 192.217.45/24 CICNET-C-217-45 C:US 1:1225 2:266 3:267 192.217.46/24 CICNET-C-217-46 C:US 1:1225 2:266 3:267 192.219.17/24 EICONMTL1 C:CA 1:2493 192.219.18/24 EICONMTL2 C:CA 1:2493 192.219.19/24 EICONMTL3 C:CA 1:2493 192.219.20/24 EICONMTL4 C:CA 1:2493 192.219.21/24 EICONMTL5 C:CA 1:2493 192.219.23/24 EICONMTL7 C:CA 1:2493 192.219.24/24 EICONMTL8 C:CA 1:2493 192.219.25/24 EICONMTL9 C:CA 1:2493 192.219.26/24 EICONMTL10 C:CA 1:2493 192.219.27/24 EICONMTL11 C:CA 1:2493 192.219.28/24 EICONMTL12 C:CA 1:2493 192.219.76/24 EICONMTL-C-219-76 C:CA 1:2493 192.219.77/24 EICONMTL-C-219-77 C:CA 1:2493 192.219.78/24 EICONMTL-C-219-78 C:CA 1:2493 192.219.79/24 EICONMTL-C-219-79 C:CA 1:2493 192.219.80/24 EICONMTL-C-219-80 C:CA 1:2493 192.219.81/24 EICONMTL-C-219-81 C:CA 1:2493 192.219.82/24 EICONMTL-C-219-82 C:CA 1:2493 192.219.83/24 EICONMTL-C-219-83 C:CA 1:2493 192.219.84/24 EICONMTL-C-219-84 C:CA 1:2493 192.219.85/24 EICONMTL-C-219-85 C:CA 1:2493 192.219.86/24 EICONMTL-C-219-86 C:CA 1:2493 192.219.87/24 EICONMTL-C-219-87 C:CA 1:2493 192.221.62/24 SURA-SUB-PRJ-C-221-62 C:US 1:86 2:279 192.221.63/24 SURA-SUB-PRJ-C-221-63 C:US 1:86 2:279 192.233.192/24 MTCS-C-233-192 C:US 1:560 2:701 192.233.193/24 MTCS-C-233-193 C:US 1:560 2:701 192.233.194/24 MTCS-C-233-194 C:US 1:560 2:701 192.233.195/24 MTCS-C-233-195 C:US 1:560 2:701 192.233.196/24 MTCS-C-233-196 C:US 1:560 2:701 192.233.197/24 MTCS-C-233-197 C:US 1:560 2:701 192.233.198/24 MTCS-C-233-198 C:US 1:560 2:701 192.233.199/24 MTCS-C-233-199 C:US 1:560 2:701 193.101.46/24 POP-MESSE C:DE 1:701 2:1800 193.140.28/24 19MAYIS-NET C:TR 1:1800 2:1240 193.141.226/24 FREINET C:DE 1:1324 2:1800 3:1240 4:1133 193.204.116/24 ROMA-SSN-C-204-116 C:IT 1:293 2:291 193.204.117/24 ROMA-SSN-C-204-117 C:IT 1:293 2:291 193.233.17/24 INASLAN C:RU 1:1800 2:1240 198.6.12/24 DATATEL2 C:US 1:701 2:702 198.6.13/24 SYNETICS-VA C:US 1:701 2:702 198.14.39/24 PLE-AF-MIL8 C:US 1:175 2:22 198.14.48/24 PLE-AF-MIL17 C:US 1:175 2:22 198.14.49/24 PLE-AF-MIL18 C:US 1:175 2:22 198.14.50/24 PLE-AF-MIL19 C:US 1:175 2:22 198.14.51/24 PLE-AF-MIL20 C:US 1:175 2:22 198.14.52/24 PLE-AF-MIL21 C:US 1:175 2:22 198.14.53/24 PLE-AF-MIL22 C:US 1:175 2:22 198.14.54/24 PLE-AF-MIL23 C:US 1:175 2:22 198.14.55/24 PLE-AF-MIL24 C:US 1:175 2:22 198.14.56/24 PLE-AF-MIL25 C:US 1:175 2:22 198.14.57/24 PLE-AF-MIL26 C:US 1:175 2:22 198.14.58/24 PLE-AF-MIL27 C:US 1:175 2:22 198.14.63/24 PLE-AF-MIL32 C:US 1:175 2:22 198.17.150/24 MWARE-STUDIO C:US 1:1323 198.17.151/24 MICROWARE2 C:US 1:1323 198.93.1/24 VVSYSTEMS1 C:US 1:200 2:201 198.97.207/24 DSMCNET C:US 1:19 2:568 198.102.177/24 ELCSCI2 C:US 1:1240 2:1800 198.102.178/24 ELCSCI3 C:US 1:1240 2:1800 198.102.180/24 ELCSCI5 C:US 1:1240 2:1800 198.102.181/24 ELCSCI6 C:US 1:1240 2:1800 198.102.182/24 ELCSCI7 C:US 1:1240 2:1800 198.102.183/24 ELCSCI8 C:US 1:1240 2:1800 198.108.50/24 SPORTS-NET C:US 1:237 2:233 3:266 4:267 5:1225 198.112.222/24 CSHLB C:US 1:560 2:701 198.132.37/24 GM-EDS-C-132-37 C:US 1:2149 2:174 199.4.138/24 PRODIGY-C-4-138 C:US 1:1324 199.5.128/24 REDI-NET C:US 1:1740 199.18.0/24 NOARNET-C-18-0 C:US 1:2149 2:174 199.18.1/24 NOARNET-C-18-1 C:US 1:2149 2:174 199.18.2/24 NOARNET-C-18-2 C:US 1:2149 2:174 199.18.3/24 NOARNET-C-18-3 C:US 1:2149 2:174 199.18.4/24 NOARNET-C-18-4 C:US 1:2149 2:174 199.18.5/24 NOARNET-C-18-5 C:US 1:2149 2:174 199.18.6/24 NOARNET-C-18-6 C:US 1:2149 2:174 199.18.7/24 NOARNET-C-18-7 C:US 1:2149 2:174 199.18.8/24 NOARNET-C-18-8 C:US 1:2149 2:174 199.97.11/24 PSINET-C-97-11 C:US 1:2149 2:174 199.105.0/24 CERF-0 C:US 1:1740 199.105.1/24 CERF-1 C:US 1:1740 199.105.2/24 CERF-2 C:US 1:1740 199.105.3/24 CERF-3 C:US 1:1740 199.105.4/24 CERF-4 C:US 1:1740 199.105.5/24 CERF-5 C:US 1:1740 199.105.6/24 CERF-6 C:US 1:1740 199.105.7/24 CERF-7 C:US 1:1740 199.105.8/24 CERF-8 C:US 1:1740 199.105.9/24 CERF-9 C:US 1:1740 199.105.10/24 CERF-10 C:US 1:1740 199.105.11/24 CERF-11 C:US 1:1740 199.105.12/24 CERF-12 C:US 1:1740 199.105.13/24 CERF-13 C:US 1:1740 199.105.14/24 CERF-14 C:US 1:1740 199.105.15/24 CERF-15 C:US 1:1740 202.25.224/24 JUEN-C-25-224 C:JP 1:1240 2:1800 202.25.225/24 JUEN-C-25-225 C:JP 1:1240 2:1800 202.25.226/24 JUEN-C-25-226 C:JP 1:1240 2:1800 202.25.227/24 JUEN-C-25-227 C:JP 1:1240 2:1800 202.25.228/24 JUEN-C-25-228 C:JP 1:1240 2:1800 202.25.229/24 JUEN-C-25-229 C:JP 1:1240 2:1800 202.25.230/24 JUEN-C-25-230 C:JP 1:1240 2:1800 202.25.231/24 JUEN-C-25-231 C:JP 1:1240 2:1800 202.25.232/24 JUEN-C-25-232 C:JP 1:1240 2:1800 202.25.233/24 JUEN-C-25-233 C:JP 1:1240 2:1800 202.25.234/24 JUEN-C-25-234 C:JP 1:1240 2:1800 202.25.235/24 JUEN-C-25-235 C:JP 1:1240 2:1800 202.25.236/24 JUEN-C-25-236 C:JP 1:1240 2:1800 202.25.237/24 JUEN-C-25-237 C:JP 1:1240 2:1800 202.25.238/24 JUEN-C-25-238 C:JP 1:1240 2:1800 202.25.239/24 JUEN-C-25-239 C:JP 1:1240 2:1800 202.26.160/24 PUKMT-NET-C-26-160 C:JP 1:1240 2:1800 202.26.161/24 PUKMT-NET-C-26-161 C:JP 1:1240 2:1800 202.26.162/24 PUKMT-NET-C-26-162 C:JP 1:1240 2:1800 202.26.163/24 PUKMT-NET-C-26-163 C:JP 1:1240 2:1800 202.26.164/24 PUKMT-NET-C-26-164 C:JP 1:1240 2:1800 202.26.165/24 PUKMT-NET-C-26-165 C:JP 1:1240 2:1800 202.26.166/24 PUKMT-NET-C-26-166 C:JP 1:1240 2:1800 202.26.167/24 PUKMT-NET-C-26-167 C:JP 1:1240 2:1800 202.26.168/24 PUKMT-NET-C-26-168 C:JP 1:1240 2:1800 202.26.169/24 PUKMT-NET-C-26-169 C:JP 1:1240 2:1800 202.26.170/24 PUKMT-NET-C-26-170 C:JP 1:1240 2:1800 202.26.171/24 PUKMT-NET-C-26-171 C:JP 1:1240 2:1800 202.26.172/24 PUKMT-NET-C-26-172 C:JP 1:1240 2:1800 202.26.173/24 PUKMT-NET-C-26-173 C:JP 1:1240 2:1800 202.26.174/24 PUKMT-NET-C-26-174 C:JP 1:1240 2:1800 202.26.175/24 PUKMT-NET-C-26-175 C:JP 1:1240 2:1800 202.26.224/24 ANCTNET-C-26-224 C:JP 1:1240 2:1800 202.26.225/24 ANCTNET-C-26-225 C:JP 1:1240 2:1800 202.26.226/24 ANCTNET-C-26-226 C:JP 1:1240 2:1800 202.26.227/24 ANCTNET-C-26-227 C:JP 1:1240 2:1800 Deletions: --139.175/16 SEED-NET C:TW 1:97 Expanded listing, sorted by country, then by organization: ========================================================== Canada ------ Department of National Defense (LFC), N/A, N/A, N/A, CANADA 1:2493 FONOROLA-EAST ---------- 131.141/16 DRE-LAN2-B-141 (CA) Eicon Technology, 2196 32nd avenue, Lachine, Montreal, Quebec, H8T 2H8, CANADA 1:2493 FONOROLA-EAST ------------- 192.219.17/24 EICONMTL1 (CA) 192.219.18/24 EICONMTL2 (CA) 192.219.19/24 EICONMTL3 (CA) 192.219.20/24 EICONMTL4 (CA) 192.219.21/24 EICONMTL5 (CA) 192.219.23/24 EICONMTL7 (CA) 192.219.24/24 EICONMTL8 (CA) 192.219.25/24 EICONMTL9 (CA) 192.219.26/24 EICONMTL10 (CA) 192.219.27/24 EICONMTL11 (CA) 192.219.28/24 EICONMTL12 (CA) 192.219.76/24 EICONMTL-C-219-76 (CA) 192.219.77/24 EICONMTL-C-219-77 (CA) 192.219.78/24 EICONMTL-C-219-78 (CA) 192.219.79/24 EICONMTL-C-219-79 (CA) 192.219.80/24 EICONMTL-C-219-80 (CA) 192.219.81/24 EICONMTL-C-219-81 (CA) 192.219.82/24 EICONMTL-C-219-82 (CA) 192.219.83/24 EICONMTL-C-219-83 (CA) 192.219.84/24 EICONMTL-C-219-84 (CA) 192.219.85/24 EICONMTL-C-219-85 (CA) 192.219.86/24 EICONMTL-C-219-86 (CA) 192.219.87/24 EICONMTL-C-219-87 (CA) Finland ------- Helsinki Telephone Company, P.O.BOX 148, SF-00131 HELSINKI, FINLAND 1:701 Alternet 2:1800 ICM-Atlantic ------------ 192.126.1/24 HTC-NMC-NET3 (FI) 192.126.6/24 HTC-NET4 (FI) 192.163.158/24 HTC-NET6 (FI) Germany ------- 2i Distribution & Solution GmbH, Haierweg 20e, D-79114 Freiburg, GERMANY 1:1324 ANS New York City - DNSS 35 2:1800 ICM-Atlantic 3:1240 ICM-Pacific 4:1133 CERN/DANTE -------------- 193.141.226/24 FREINET (DE) POP Hamburg GmbH, Wendestr. 308, D-20537 Hamburg, GERMANY 1:701 Alternet 2:1800 ICM-Atlantic ------------- 193.101.46/24 POP-MESSE (DE) Italy ----- Consorzio Roma Ricerhe, Salita S. Nicola da Tolentino 1-B, Roma, I-00187, ITALY 1:293 Energy Science Network (FIX-East) 2:291 Energy Science Network (FIX-West) -------------- 193.204.116/24 ROMA-SSN-C-204-116 (IT) 193.204.117/24 ROMA-SSN-C-204-117 (IT) Japan ----- Asahikawa National College of Technology, Shunkodai 2-2, Asahikawa, Hokkaido, 071, JAPAN 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 202.26.224/24 ANCTNET-C-26-224 (JP) 202.26.225/24 ANCTNET-C-26-225 (JP) 202.26.226/24 ANCTNET-C-26-226 (JP) 202.26.227/24 ANCTNET-C-26-227 (JP) Joetsu University of Education, Yamayashiki 1,Joetsu-shi,Niigata 943, Joetsu-shi, Niigata, 943, JAPAN 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 202.25.224/24 JUEN-C-25-224 (JP) 202.25.225/24 JUEN-C-25-225 (JP) 202.25.226/24 JUEN-C-25-226 (JP) 202.25.227/24 JUEN-C-25-227 (JP) 202.25.228/24 JUEN-C-25-228 (JP) 202.25.229/24 JUEN-C-25-229 (JP) 202.25.230/24 JUEN-C-25-230 (JP) 202.25.231/24 JUEN-C-25-231 (JP) 202.25.232/24 JUEN-C-25-232 (JP) 202.25.233/24 JUEN-C-25-233 (JP) 202.25.234/24 JUEN-C-25-234 (JP) 202.25.235/24 JUEN-C-25-235 (JP) 202.25.236/24 JUEN-C-25-236 (JP) 202.25.237/24 JUEN-C-25-237 (JP) 202.25.238/24 JUEN-C-25-238 (JP) 202.25.239/24 JUEN-C-25-239 (JP) Prefectural University of Kumamoto, 2432-1, Mizuarai, Kengun-machi, Kumamoto 862, Kengun-machi, Kumamoto, 862, JAPAN 1:1240 ICM-Pacific 2:1800 ICM-Atlantic ------------- 202.26.160/24 PUKMT-NET-C-26-160 (JP) 202.26.161/24 PUKMT-NET-C-26-161 (JP) 202.26.162/24 PUKMT-NET-C-26-162 (JP) 202.26.163/24 PUKMT-NET-C-26-163 (JP) 202.26.164/24 PUKMT-NET-C-26-164 (JP) 202.26.165/24 PUKMT-NET-C-26-165 (JP) 202.26.166/24 PUKMT-NET-C-26-166 (JP) 202.26.167/24 PUKMT-NET-C-26-167 (JP) 202.26.168/24 PUKMT-NET-C-26-168 (JP) 202.26.169/24 PUKMT-NET-C-26-169 (JP) 202.26.170/24 PUKMT-NET-C-26-170 (JP) 202.26.171/24 PUKMT-NET-C-26-171 (JP) 202.26.172/24 PUKMT-NET-C-26-172 (JP) 202.26.173/24 PUKMT-NET-C-26-173 (JP) 202.26.174/24 PUKMT-NET-C-26-174 (JP) 202.26.175/24 PUKMT-NET-C-26-175 (JP) Russian Federation ------------------ Institute of Astronomy RAS, 48 Pyatnitskaya St., Moscow, 109017, RUSSIAN FEDERATION 1:1800 ICM-Atlantic 2:1240 ICM-Pacific ------------- 193.233.17/24 INASLAN (RU) Turkey ------ 19 Mayis University, Kurupelit Kampusu, Kurupelit, Samsun, 55139, TURKEY 1:1800 ICM-Atlantic 2:1240 ICM-Pacific ------------- 193.140.28/24 19MAYIS-NET (TR) United States ------------- BP Chemicals Inc., 1600 West 135th Street, Gardena, CA 90249-2506, USA 1:1740 CERFnet -------------- 192.215.150/24 CERFNET-150 (US) CICNet, Inc., 2901 Hubbard Ave, Ann Arbor, MI 48105, USA 1:1225 CICNET at Argonne Labs 2:266 CICNET at MERIT 3:267 CICNET at UIUC ------------- 192.217.45/24 CICNET-C-217-45 (US) 192.217.46/24 CICNET-C-217-46 (US) Cincom Systems, Inc, 2300 Montana Ave, Cincinnati, OH 45211, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ----------- 199.18.0/24 NOARNET-C-18-0 (US) 199.18.1/24 NOARNET-C-18-1 (US) 199.18.2/24 NOARNET-C-18-2 (US) 199.18.3/24 NOARNET-C-18-3 (US) 199.18.4/24 NOARNET-C-18-4 (US) 199.18.5/24 NOARNET-C-18-5 (US) 199.18.6/24 NOARNET-C-18-6 (US) 199.18.7/24 NOARNET-C-18-7 (US) 199.18.8/24 NOARNET-C-18-8 (US) Cold Spring Harbor Laboratory, 111 Hart Street, Beverly, MA 01915, USA 1:560 NEARnet Regional Network 2:701 Alternet -------------- 198.112.222/24 CSHLB (US) Datatel, Inc., 4375 Fair Lakes Court, Fairfax, VA 22033, USA 1:701 Alternet 2:702 Alternet ----------- 198.6.12/24 DATATEL2 (US) Defense Systems Management College, Commandant, Fort Belvoir, VA 22060, USA 1:19 Milnet (FIX-East) 2:568 Milnet (FIX-West) ------------- 198.97.207/24 DSMCNET (US) Electro Scientific Industries, 13900 NW Science Park Drive, Portland, OR 97229, USA 1:1240 ICM-Pacific 2:1800 ICM-Atlantic -------------- 198.102.177/24 ELCSCI2 (US) 198.102.178/24 ELCSCI3 (US) 198.102.180/24 ELCSCI5 (US) 198.102.181/24 ELCSCI6 (US) 198.102.182/24 ELCSCI7 (US) 198.102.183/24 ELCSCI8 (US) Electronic Data Systems (EDS), 120 West Passaic Street, Rochelle Park, NJ 07662, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------- 198.132.37/24 GM-EDS-C-132-37 (US) Formtek, Inc, 661 Anderson Drive, Pittsburgh, PA 15220, USA 1:204 PSCNET Regional Network 2:1206 PSCNET Regional Network ------------ 192.21.10/24 FORMTEK (US) 192.148.168/24 FORMTEK1 (US) 192.148.169/24 FORMTEK2 (US) INFONET, 2100 E. Grand Avenue, El Segundo, CA 90245, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------ 192.92.40/24 INFOLAN-C20 (US) Maine Technical College System, 323 State Street, Augusta, ME 04330, USA 1:560 NEARnet Regional Network 2:701 Alternet -------------- 192.233.192/24 MTCS-C-233-192 (US) 192.233.193/24 MTCS-C-233-193 (US) 192.233.194/24 MTCS-C-233-194 (US) 192.233.195/24 MTCS-C-233-195 (US) 192.233.196/24 MTCS-C-233-196 (US) 192.233.197/24 MTCS-C-233-197 (US) 192.233.198/24 MTCS-C-233-198 (US) 192.233.199/24 MTCS-C-233-199 (US) Michael Newton, 601 Bloomfield St, Apt #2, Hoboken, NJ 07030-4219, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ------------ 199.97.11/24 PSINET-C-97-11 (US) Microware, 1900 NW 114th St., Des Moines, IA 50325-7077, USA 1:1323 ANS Chicago - DNSS 27 ------------- 192.52.109/24 MICROWARE (US) 198.17.150/24 MWARE-STUDIO (US) 198.17.151/24 MICROWARE2 (US) NCR, 1700 S. Patterson Blvd, Dayton, OH 45479, USA 1:2149 PSINET-2 2:174 NYSERNet Regional Network / PSI ---------- 135.131/16 NCRWIN13 (US) National University, 4141 Camino Del Rio South, San Diego, CA 92108, USA 1:1740 CERFnet -------------- 192.215.128/24 CERFNET-128 (US) 192.215.129/24 CERFNET-129 (US) 192.215.130/24 CERFNET-130 (US) 192.215.131/24 CERFNET-131 (US) 192.215.132/24 CERFNET-132 (US) 192.215.133/24 CERFNET-133 (US) 192.215.134/24 CERFNET-134 (US) 192.215.135/24 CERFNET-135 (US) 192.215.136/24 CERFNET-136 (US) 192.215.137/24 CERFNET-137 (US) 192.215.138/24 CERFNET-138 (US) 192.215.139/24 CERFNET-139 (US) 192.215.140/24 CERFNET-140 (US) 192.215.141/24 CERFNET-141 (US) 192.215.142/24 CERFNET-142 (US) 192.215.143/24 CERFNET-143 (US) OL-AC PL/SC, BLDG 8352 RM 141, EDWARDS AFB, CA 93523, USA 1:175 AFWL-AS (Air Force Weapons Laboratory) 2:22 NOSC (Naval Ocean Systems Center) ------------ 198.14.39/24 PLE-AF-MIL8 (US) 198.14.48/24 PLE-AF-MIL17 (US) 198.14.49/24 PLE-AF-MIL18 (US) 198.14.50/24 PLE-AF-MIL19 (US) 198.14.51/24 PLE-AF-MIL20 (US) 198.14.52/24 PLE-AF-MIL21 (US) 198.14.53/24 PLE-AF-MIL22 (US) 198.14.54/24 PLE-AF-MIL23 (US) 198.14.55/24 PLE-AF-MIL24 (US) 198.14.56/24 PLE-AF-MIL25 (US) 198.14.57/24 PLE-AF-MIL26 (US) 198.14.58/24 PLE-AF-MIL27 (US) 198.14.63/24 PLE-AF-MIL32 (US) Pick Systems, 1691 Browning, Irvine, CA 92714, USA 1:1740 CERFnet -------------- 192.215.148/24 CERFNET-148 (US) Prodigy Service Company, 445 Hamilton Ave., White Plains, NY 10601, USA 1:1324 ANS New York City - DNSS 35 ------------ 199.4.138/24 PRODIGY-C-4-138 (US) Reliable Distributed Information Corp., 2500 E. Foothill Blvd., Suite 509, Pasadena, CA 91107, USA 1:1740 CERFnet ------------ 199.5.128/24 REDI-NET (US) SURAnet, 8400 Baltimore Blvd., College Park, MD 20740, USA 1:86 SURANET Regional Network (College Park) 2:279 SURANET Regional Network (Georgia Tech) ------------- 192.221.62/24 SURA-SUB-PRJ-C-221-62 (US) 192.221.63/24 SURA-SUB-PRJ-C-221-63 (US) Sports Markets, Inc, 611 Church St., Ann Arbor, MI 48104, USA 1:237 MichNet (MERIT) 2:233 UMnet (University of Michigan) 3:266 CICNET at MERIT 4:267 CICNET at UIUC 5:1225 CICNET at Argonne Labs ------------- 198.108.50/24 SPORTS-NET (US) State of Wisconsin - DILHR, 201 E. Washington Avenue, Room 444, Madison, WI 53702, USA 1:1225 CICNET at Argonne Labs 2:267 CICNET at UIUC 3:266 CICNET at MERIT ---------- 167.218/16 WISC-DILHR (US) Synetics, 540 Edgewater Drive, Wakefield, MA 01880, USA 1:701 Alternet 2:702 Alternet ----------- 198.6.13/24 SYNETICS-VA (US) Tandem Computers, Inc., 10435 N. Tantau, Cupertino, CA 95014-0727, USA 1:200 BARRNet 2:201 BARRNet -------------- 192.216.130/24 TANDEM-216-130 (US) 192.216.131/24 TANDEM-216-131 (US) Union Carbide Corporation, Telecommunications Planning - G3, 39 Old Ridgebury Road, Danbury, CT 06817, USA 1:1329 ANS Greensboro - DNSS 75 --------- 144.67/16 UNIONCARBIDE-0 (US) 144.68/16 UNIONCARBIDE-1 (US) University California San Diego, UCSD C-024, La Jolla, CA 92093-0124, USA 1:1740 CERFnet ------------ 199.105.0/24 CERF-0 (US) 199.105.1/24 CERF-1 (US) 199.105.2/24 CERF-2 (US) 199.105.3/24 CERF-3 (US) 199.105.4/24 CERF-4 (US) 199.105.5/24 CERF-5 (US) 199.105.6/24 CERF-6 (US) 199.105.7/24 CERF-7 (US) 199.105.8/24 CERF-8 (US) 199.105.9/24 CERF-9 (US) 199.105.10/24 CERF-10 (US) 199.105.11/24 CERF-11 (US) 199.105.12/24 CERF-12 (US) 199.105.13/24 CERF-13 (US) 199.105.14/24 CERF-14 (US) 199.105.15/24 CERF-15 (US) V & V Systems, 300 Montgomery Street, 2nd Fl, San Francisco, CA 94104, USA 1:200 BARRNet 2:201 BARRNet ----------- 198.93.1/24 VVSYSTEMS1 (US) ========================================================== The configuration reports which reflect today's update will be available for anonymous ftp on nic.merit.edu by 08:00 EST : configuration reports -- nic.merit.edu:nsfnet/announced.networks: as-as.now as-gw.now ans_core.now country.now net-comp.now nets.doc nets.tag.now nets.unl.now NSS routing software configuration files -- nic.merit.edu:nsfnet/backbone.configuration: nss<NSS number>.t3p Information is also avaiable through the PRDB whois server. Type "whois -h prdb.merit.edu help" for details. -------------------------------------------------------------------------- Please send all requests for configuration changes to nsfnet-admin(a)merit.edu using the NSFNET configuration forms. The forms are available on-line from the nic.merit.edu machine. Use ftp and the anonymous login to get on the machine. Do a "cd nsfnet/announced.networks" and get the files template.net, template.net.README, template.gate, and template.as. In order to more efficiently process your requests, we have moved to a system which requires the use of template.net (NACR) version 7.0 ******************************* --Steve Widmayer Merit/NSFNET skw(a)merit.edu --Enke Chen Merit/NSFNET enke(a)merit.edu --Steven J. Richardson Merit/NSFNET sjr(a)merit.edu

1 0

Re: !! (fwd)
by Elise Gerich 31 Jan '94

31 Jan '94

Hans-Werner, >1. I am forced to assume that CIX membership does not connect me to >the NSF backbone therefore I am missing half of the Internet! If >this is true, how do I connect to the other half? CIX membership provides exactly that; connectivity to CIX members. ANS is a CIX member but the CIX rules (as they have been explained to me) prohibit one service provider from acting as transit between the CIX membership and other service providers (non-CIX members). So if NSFNET regionals are not CIX members, the CIX filters traffic with those non-members. The only solution is to talk to service providers which will redistribute the NSFNET routes and try to make a deal (if your customers agree to only send traffic which is AUP compliant to the NSFNET service.) >2. With CIDR and Number aggregation, we are expected to provide our >customer networks a number range from our larger range. However, we >cannot get a number range from INTERNIC. They expect us to get ours >from "our supplier". Is this CIX? Or do you have to contract with a >"supplier" who has NSF Backbone connections to get a IP number range? > I guess I thought that we would be a supplier! It was my understanding that you have to define yourself as a supplier and let the Internic know your status. > What am I missing? >Dave Nordlund nordlund(a)ukanvm.cc.ukans.edu >University of Kansas 913/864-0450 >Computing Services FAX 913/864-0485 >Lawrence, KS 66045 I am not on the com-priv list but perhaps someone on the regional-techs list has more information concerning these questions. --Elise

2 1

!! (fwd)
by hwb＠upeksa.sdsc.edu 30 Jan '94

30 Jan '94

Forwarded message: >From daemon Sun Jan 30 13:43:45 1994 Date: Sun, 30 Jan 1994 15:38:40 CST-600 From: Dave Nordlund <NORDLUND(a)ccstaff.cc.ukans.edu> Subject: Confusion To: com-priv(a)psi.com Message-Id: <517D84AF8(a)ccstaff.cc.ukans.edu> X-Mailer: PMail v3.0 (R1a) Content-Transfer-Encoding: 7BIT Priority: normal Folks I am working with a company to form a network to resell Internet access. Years of experience with the existing NSF based Internet does not prepare me for the present confusion I see in the commercial Internet world. 1. I am forced to assume that CIX membership does not connect me to the NSF backbone therefore I am missing half of the Internet! If this is true, how do I connect to the other half? 2. With CIDR and Number aggregation, we are expected to provide our customer networks a number range from our larger range. However, we cannot get a number range from INTERNIC. They expect us to get ours from "our supplier". Is this CIX? Or do you have to contract with a "supplier" who has NSF Backbone connections to get a IP number range? I guess I thought that we would be a supplier! What am I missing? Dave Nordlund nordlund(a)ukanvm.cc.ukans.edu University of Kansas 913/864-0450 Computing Services FAX 913/864-0485 Lawrence, KS 66045

4 3

a proposal
by yakov＠watson.ibm.com 28 Jan '94

28 Jan '94

Folks, Appended is a proposal on address allocation for private internets. It was drafted by myself and Bob Moskowitz (Chrysler Corp.). Yakov & Bob. P.S. The proposal incorporates comments that we received from several people. The Acknowledgement section will be added to reflect their contributions. --------------------------------cut here-------------------------------- Address Allocation for Private Internets Hosts within sites that use IP can be partitioned into three categories: - hosts that do not require Internet access - hosts that need access to a limited set of Internet services (e.g. E-mail, FTP, netnews, remote login) which can be handled by application layer relays - hosts that need unlimited access (provided via IP connectivity) to the Internet Hosts within the first category may use IP addresses that are unambiguous within a site, but may be ambiguous within the Internet. For many hosts in the second category an unrestricted Internet access (provided via IP connectivity) may be more than just unnecessary -- it may be undesirable for privacy/security reasons. Just like hosts within the first category, such hosts may use IP addresses that are unambiguous within a site, but may be ambiguous within the Internet. Only hosts in the last category require IP addresses that are unambiguous within the Internet. It is common for organizations to build private internets which have little or no hosts falling into the third category. Even if an organization has a mixed category of hosts, in many cases within the organization hosts in the first and the second category are interconnected in such a way as to disable their IP level connectivity to the Internet, and hosts in the third category are segregated into a separate segment(s) of topology (separate Link Layer subnetwork). Only these segments need to have IP level connectivity to the Internet. Even if the hosts in the third category are not segregated into a separate physical segment of topology, such hosts can be segregated on a common (with the hosts in the first or the second category) physical segment of topology by assigning two distinct subnetwork numbers to the segment. To conserve IP network address space utilization for the public Internet, hosts within private internets that fall into the first or the second category may take their addresses out of the specific IP address block to be used exclusively by such hosts. The size of the block is expected to be sufficient to accommodate most or all of the practical situations. The reserved block consists of three sub-blocks: a single Class A network number (X), 8 contiguous Class B network numbers (from Y to Z), and 255 contiguous Class C network number (from W to V). For sites with fewer than 1,000 hosts we suggest to use addresses out of the sub-block of Class C network numbers. For sites with more than 10,000 hosts we suggest to use addresses out of the Class A network number. For all other sites we suggest to use addresses out of the sub-block of Class B network numbers. Of course, it is also possible for a site to use addresses out of more than one sub-block (using a mix of Class A, B, and C network numbers) An organization that uses addresses out of the pool allocated for private networks can be more liberal in terms of address space utilization, as compared to the address space utilization of the Internet-visible address space. Thus, rather than using variable-length subnettting, a site may use fixed-length subnetting. In many cases use of Class C network numbers may be helpful to avoid dealing with IP subnetting altogether. The reserved IP address block will not be routed in the Internet. Routers in the Internet are expected to be configured to reject (filter out) Network Layer Reachability Information associated with the destinations identified by the address block. If a router receives such information the rejection shall not be treated as a routing protocol error. Since within a single internet IP addresses have to be unambigous, assigning IP addresses out of the block allocated for private internets has the following implications: - when a host that is taken its IP address from the block moves from the first or the second category into the third one, the host has to change its IP address. - if several previously unconnected sites (several private internets) that have hosts numbered out of the block decide to interconnect (merge their internets into a single internet), this may require changing addresses of the hosts. Since the IP addresses within the block will not be routed in the Internet, a host that takes its IP address from the block will be unreachable (at the network layer) from any host in the Internet. That offers additional firewall protection. With the proposed scheme many large corporate sites can use a relatively small block of addresses from the global IP address space. That would benefit the Internet by conserving the use of IP address space.

1 0