On Wed, Oct 10, 2012 at 1:29 PM, Naresh Narang wrote: > On Wed, Oct 10, 2012 at 10:45 AM, Naresh Narang wrote: >> >> >> On Tue, Oct 9, 2012 at 3:00 PM, Naresh Narang wrote: >>> ISP is utterly stupid. You're receiving routes for 192.168.2 and may be >>> others. You must null route all 1918 >>> addresses on edge router. >> >> I doubt very much that ISP is advertising "Private IP" routes to the >> public. >> >> ================================ >> Check routing table to confirm, even so, RFC 1918 should be null routed on >> the edge router as best practice. >> > > Fair enough but how many people do you think are competent to > do so? > > Besides, some consumer grade router/modems firewall configs > are a night mare to figure out :( > > -------------------------------------------------------------------------------------- > > Sorry, people running their network should damn well know what they are > doing.
OK, please start a campaign to "educate" the millions of users who have net access across the globe. Alternately, or mandate the vendors of such devices to put such rules by default into their devices. > Also, as a side note, yes I have seen some ISPs exposing their > private networks to external, which does not mean they are advertising > private networks. But if I can traceroute to 192.168.2.x, they ARE > advertising. This is an opportunity to educate the ISPs about it as well. -- Arun Khan _______________________________________________ Ilugd mailing list [email protected] http://frodo.hserus.net/mailman/listinfo/ilugd
