[46972] in North American Network Operators' Group
Re: is your host or dhcp server sending dns dynamic updates for rfc1918?
daemon@ATHENA.MIT.EDU (Randy Bush)
Fri Apr 19 13:06:50 2002
From: Randy Bush <randy@psg.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
To: Paul Vixie <paul@vix.com>
Cc: nanog@merit.edu
Message-Id: <E16ybpz-0005nL-00@rip.psg.com>
Date: Fri, 19 Apr 2002 10:06:19 -0700
Errors-To: owner-nanog-outgoing@merit.edu
>>> now as to who's responsible, first off you have to understand that we
>>> block rfc1918-sourced packets at our AS boundary. (otherwise these
>>> numbers would be Much Higher
>> are you sure? i suspect they are windows 2000 systems behind NATs. so
>> the dynamic update is for the 1918 address, but the packet source address
>> has been natted into real space.
> according to our border flow stats, not all of them get nat'd on the way
> here.
we already knew nats were broken.
but i still believe that win2k behind nats probably explain most of the
data behind the updates for 1918 space from non-1918 ip source addresses.
randy
