nanog mailing list archives

Re: smurf's attack...

From: Jon Green <jcgreen () netins net>
Date: Fri, 05 Sep 1997 14:45:17 -0500

On Fri, 5 Sep 1997 15:24:58 -0400, jordyn () bestweb net writes:

We're also using the following extended access list (along with
anti-spoofing filters) to prevent smurf attacks from originating from our
network:

access-list XXX deny ip any 0.0.0.255 255.255.255.0



Folks, this is a bad idea.  There are lots of completely valid IP
addresses out there that end in .255.  True, most of them that
end in .255 ARE broadcast addresses, but if people implement this
kind of filtering on a large scale, it really breaks classless IP.

But that's just IMHO. :)

-Jon

     -----------------------------------------------------------------
    *      Jon Green            *         "Life's a dance             *
   *   jcgreen () netINS net       *          you learn as you go"        *
  *  Finger for Geek Code/PGP   *                                       *
 *  #include "std_disclaimer.h" * http://www.netins.net/showcase/jcgreen *
 -------------------------------------------------------------------------

Current thread:

smurf's attack... Network Administrator (Sep 05)
- Message not available
  - Re: smurf's attack... Jay R. Ashworth (Sep 05)
- Re: smurf's attack... David Papp (Sep 05)
  - Re: smurf's attack... Jordyn A. Buchanan (Sep 05)
    - Re: smurf's attack... Jon Green (Sep 05)
    - Re: smurf's attack... Jordyn A. Buchanan (Sep 05)
    - Re: smurf's attack... Rick Summerhill (Sep 05)
    - Re: smurf's attack... Michael K. Sanders (Sep 05)
    - Re: smurf's attack... DAVE NORDLUND (Sep 05)
    - Re: smurf's attack... Jordyn A. Buchanan (Sep 05)
    - Re: smurf's attack... Michael K. Sanders (Sep 05)
    - Re: smurf's attack... Randy Bush (Sep 05)
    - Re: smurf's attack... Dave Andersen (Sep 06)
    - Re: smurf's attack... Randy Bush (Sep 05)
    - Message not available
    - Re: smurf's attack... Jay R. Ashworth (Sep 05)

(Thread continues...)