[Dshield] Block list

John Hardin johnh at aproposretail.com
Fri Oct 26 19:19:49 GMT 2001


M. D. Squiers wrote:
 >

> # Simplify the 172's as
> 172.16.0.0/12


The reserved-for-private-use netblocks should be blocked in *both 
directions* (in and out, source and destination) at your boundary:

10.0.0.0/8

172.16.0.0/12

192.168.0.0/24

Ideally you should also block loopback, which should never appear 
"on-the-wire":

127.0.0.0/8


-- 
John Hardin                                   <johnh at aproposretail.com>
Internal Systems Administrator                    voice: (425) 672-1304
Apropos Retail Management Systems, Inc.             fax: (425) 672-0192
-----------------------------------------------------------------------
  2 days until Daylight Savings Time ends




More information about the list mailing list