North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: traffic filtering
- From: Matthew S. Hallacy
- Date: Wed Jan 23 08:48:53 2002
On Tue, Jan 22, 2002 at 05:04:36PM +0000, E.B. Dreger wrote:
> Ughh. Take 10.0.0.0/22: What is 10.0.0.255? How about 10.0.1.0?
> Misconfiguration like this is why I (and others) recommend not
> using ...0 or ...255 addresses, even if valid.
A quick look on IRC provides this:
Granted, it's a small sample, but it proves that these [valid] addresses are
in widespread use, they do work, and there's no real reason to not use them..
Filtering on *.255 and *.0 won't catch the other broadcast/network addresses
on different subnet masks, and you wouldn't have to filter at all if the network
we properly configured =)
Matthew S. Hallacy CACU, PWGCS, and BOFH Certified
http://techmonkeys.org/~poptix GPG public key 0x01938203