From owner-freebsd-security Sun Oct 3 20:13: 4 1999 Delivered-To: freebsd-security@freebsd.org Received: from frmug.org (frmug-gw.frmug.org [193.56.58.252]) by hub.freebsd.org (Postfix) with ESMTP id 0535F14D35 for ; Sun, 3 Oct 1999 20:13:01 -0700 (PDT) (envelope-from roberto@keltia.freenix.fr) Received: (from uucp@localhost) by frmug.org (8.9.3/frmug-2.5/nospam) with UUCP id FAA08240 for freebsd-security@FreeBSD.ORG; Mon, 4 Oct 1999 05:12:59 +0200 (CEST) (envelope-from roberto@keltia.freenix.fr) Received: by keltia.freenix.fr (Postfix, from userid 101) id BD8A187A6; Mon, 4 Oct 1999 00:10:28 +0200 (CEST) Date: Mon, 4 Oct 1999 00:10:28 +0200 From: Ollivier Robert To: FreeBSD Security ML Subject: Re: anti-spoofing Message-ID: <19991004001028.A1795@keltia.freenix.fr> Mail-Followup-To: FreeBSD Security ML References: <10882.991003@cityline.ru> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii User-Agent: Mutt/1.0pre2i In-Reply-To: <10882.991003@cityline.ru> X-Operating-System: FreeBSD 4.0-CURRENT/ELF AMD-K6/200 & 2x PPro/200 SMP Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org According to Dmitriy Bokiy: > Where can I find _the complete_ list of addresses to be blocked? RFC-1918. It includes the following networks: 10.0.0.0/8 (in old pre-CIDR world, a A-class network) 172.16.0.0/12 (in old pre-CIDR world, 16 B-class networks) 192.168.0.0/16 (in old pre-CIDR world, 256 C-class networks). Don't forget to refuse your own prefixes on your incoming interface... That is, if you have a.b.c.d/n, you need to refuse this prefix on the incoming interface of your router. -- Ollivier ROBERT -=- FreeBSD: The Power to Serve! -=- roberto@keltia.freenix.fr FreeBSD keltia.freenix.fr 4.0-CURRENT #74: Thu Sep 9 00:20:51 CEST 1999 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message