[45193] in North American Network Operators' Group
Re: traffic filtering
daemon@ATHENA.MIT.EDU (Stephen Griffin)
Mon Jan 21 18:47:54 2002
Message-Id: <200201212346.SAA12907@elektra.ultra.net>
In-Reply-To: <200201212253.RAA05576@elektra.ultra.net> from Stephen Griffin at "Jan 21, 2002 05:53:16 pm"
To: stephen.griffin@rcn.com (Stephen Griffin)
Date: Mon, 21 Jan 2002 18:46:38 -0500 (EST)
From: Stephen Griffin <stephen.griffin@rcn.com>
Cc: nanog@merit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu
In the referenced message, Stephen Griffin said:
>
> Hello,
>
> I'm curious about how many networks completely filter all traffic to
> any ip address ending in either ".0" or ".255".
Just to clarify, since a lot of the messages I'm receiving seem to indicate
I was unclear. I'm not trying to determine how I should filter. I'm
trying to determine how many other networks filter in such a manner that
traffic to/from legitimate hosts is blocked.
One solution, rather than completely filter particular ip addresses, is
to simply rate-limit either/both icmp echo request/icmp echo response
message types. This should allow these other networks the ability to
mitigate smurfs, while still allowing traffic from legitimate ip addresses.
