![nanog logo](/images/nanog-logo.png)
nanog mailing list archives
Re: Strange public traceroutes return private RFC1918 addresses
From: Bob Snyder <rsnyder () toontown erial nj us>
Date: Tue, 03 Feb 2004 10:15:01 -0500
Michael.Dillon () radianz com wrote:
I'm confused about your traceroute comment. You're assuming a packet with a RFC1918 source address won't be dropped. In many cases, it will, and should be. Each organization is permitted to use the RFC1918 address space internally for any purpose they see fit. This often means they don't want people outside the organization to be able to generate packets with source addresses for machines they consider to be internal. It makes sense to drop such packets as they come in to your AS.If RFC1918 addresses are used only on interfaces with jumbo MTUs on the order of 9000 bytes then it doesn't break PMTUD in a 1500 byte Ethernet world. And it doesn't break traceroute. We just lose the DNS hint about the router location.
Assuming that a packet with an RFC1918 source address will get dropped as it crosses in to a new AS, this will break traceroute hops, Path MTU Discovery, Network/Host unreachable, or any other ICMP that needs to be generated from a router with a RFC1918 address.
Is everyone filtering RFC1918 at their edge? No. But my impression is that more and more places are. Certainly anyone who uses either Team Cymru's Bogon services or similar services (doesn't Cisco now do this in IOS as well?) will be blocking them...
Bob
Current thread:
- Re: Strange public traceroutes return private RFC1918 addresses, (continued)
- Re: Strange public traceroutes return private RFC1918 addresses Stephen J. Wilcox (Feb 03)
- RE: Strange public traceroutes return private RFC1918 addresses Joel Jaeggli (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Valdis . Kletnieks (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Leo Bicknell (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Petri Helenius (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Niels Bakker (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Petri Helenius (Feb 03)
- RE: Strange public traceroutes return private RFC1918 addresses Terry Baranski (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Kevin Oberman (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Richard A Steenbergen (Feb 03)
- Re: Strange public traceroutes return private RFC1918 addresses Hani Mustafa (Feb 04)
- Re: Strange public traceroutes return private RFC1918 addresses Robert E. Seastrom (Feb 04)
- Re: Strange public traceroutes return private RFC1918 addresses Iljitsch van Beijnum (Feb 04)
- MTUs - Was: Strange public traceroutes return private RFC1918 addresses Warren Kumari (Feb 05)
- Re: MTUs - Was: Strange public traceroutes return private RFC1918addresses sthaug (Feb 05)
- Re: MTUs - Was: Strange public traceroutes return private RFC1918 addresses Kevin Oberman (Feb 05)
- Re: MTUs - Was: Strange public traceroutes return private RFC1918 addresses Laurence F. Sheldon, Jr. (Feb 05)