Firewall Wizards mailing list archives

RE: RE: Why blocking bogons buys you nothing (Mikael Ols son)

From: TSimons () Delphi-Tech com
Date: Wed, 12 Nov 2003 21:04:34 -0500

Thanks for the tip.

Given our access list structure:
 1) permit any to corporate web site
 2) permit any to MX servers
 3) deny bogon nets
 4) deny rouge ports
 5) specialized firewall services, secondary web services, etc

I can safely adjust my ACL as level 5 is needed.

Thanks!!
~Todd

-----Original Message-----
From: Tobias Reckhard [mailto:jester71 () gmx net]
Sent: Wednesday, November 12, 2003 2:50 AM
To: firewall-wizards () honor icsalabs com
Subject: Re: [fw-wiz] RE: Why blocking bogons buys you nothing (Mikael
Ols son)


TSimons () Delphi-Tech com wrote:

Just some information/stats from another bogon user. We block Bogons, then
rouge/unused ports.

[snip]

    deny ip 62.0.0.0 0.255.255.255 any (278 matches)


This line caught my attention. Until very recently, we used an IP 
address from that network. It 'belongs' to RIPE. Maybe you should update 
your list.

Cheers,
Tobias


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

RE: RE: Why blocking bogons buys you nothing (Mikael Ols son) TSimons (Nov 13)