...which reminds me of the Spoofer Project: The Spoofer Project: State of IP Spoofing http://momo.lcs.mit.edu/spoofer/summary.php - ferg -- Bill Stewart <nonobvious@gmail.com> wrote: That's ok. At least six more Telstra PCs will get compromised tomorrow. I don't know if they're doing uRPF etc. to stop address spoofing, or blocking RFC1918, but if not, that may help keep the load down. I'm not a fan of using anycast as opposed to building scalable distributed configurations of DNS servers and coordinating them with the DHCP settings that tell customers what server to use, (and monitoring them to make sure they keep working :-), but it can be good for isolating some problems like this. -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg@netzero.net or fergdawg@sbcglobal.net ferg's tech blog: http://spaces.msn.com/members/fergdawg/