nanog mailing list archives

Re: More on black-holed reserved/8 block.

From: Paul Vixie <vixie () mibh net>
Date: 20 Jul 2000 10:23:05 -0700


Valdis.Kletnieks () vt edu writes:

Is it the case that above.net is black-holing packets with a *destination*
in the RBL, but *not* filtering packets with a *source* address from
the RBL?


Please tell me how to automatically rebuild an ACL in real time based on
advertisements and withdrawals in a BGP feed, and I'll recommend that
everybody to that.  Meanwhile, the RBL BGP feed only affects destinations.

If so, this would still allow RPC-based attacks (and TCP as well,
if the victim's box had bad sequence number prediction).


Yes.

Current thread:

More on black-holed reserved/8 block. Valdis . Kletnieks (Jul 20)
- Re: More on black-holed reserved/8 block. Paul Vixie (Jul 20)
- Re: More on black-holed reserved/8 block. Mark Milhollan (Jul 20)
  - Re: More on black-holed reserved/8 block. Henry R. Linneweh (Jul 21)
- Re: More on black-holed reserved/8 block. Henry R. Linneweh (Jul 20)
- <Possible follow-ups>
- Re: More on black-holed reserved/8 block. Richard A. Steenbergen (Jul 20)