Re: Solution: Re: Huge smurf attack
At 12:39 PM 1/12/1999 -0800, Dan Hollis wrote:
On Tue, 12 Jan 1999, Dean Anderson wrote:
And yes, some customers may in fact want or need directed broadcasts on.
Leaking rfc1918 onto the public internet is not acceptable, directed broadcasts enabled or not.
Agreed. We block anything sourced from rfc1918 outbound, among other things. --Dean ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Plain Aviation, Inc dean@av8.com LAN/WAN/UNIX/NT/TCPIP http://www.av8.com ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
On Tue, 12 Jan 1999, Dean Anderson wrote:
At 12:39 PM 1/12/1999 -0800, Dan Hollis wrote:
On Tue, 12 Jan 1999, Dean Anderson wrote:
And yes, some customers may in fact want or need directed broadcasts on. Leaking rfc1918 onto the public internet is not acceptable, directed broadcasts enabled or not. Agreed. We block anything sourced from rfc1918 outbound, among other things.
Too bad the major backbones dont do this. Arent there something like "willfull negligence" laws somewhere when calculating monetary damages? Eg the backbones have been notified of the problem and outright refuse to take action to block rfc1918 addresses. -Dan
participants (2)
-
Dan Hollis
-
Dean Anderson