[81475] in North American Network Operators' Group

home help back first fref pref prev next nref lref last post

Re: Best practice ACLs for a internet facing border router?

daemon@ATHENA.MIT.EDU (Kim Onnel)
Mon Jun 13 10:25:56 2005

Date: Mon, 13 Jun 2005 16:25:25 +0200
From: Kim Onnel <karim.adel@gmail.com>
Reply-To: Kim Onnel <karim.adel@gmail.com>
To: Drew Weaver <drew.weaver@thenap.com>
Cc: nanog@merit.edu
In-Reply-To: <B9ECBF8D89E7684EB63FF250E8788B1911961F@BIGLOG.thenap.com>
Errors-To: owner-nanog@merit.edu


------=_Part_10461_15026345.1118672725722
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

block bogons
block your ips from outside
block rfc 1918 (martians)
block common worms ports



On 6/13/05, Drew Weaver <drew.weaver@thenap.com> wrote:
>=20
>=20
> I'm just curious if anyone has ever published a list of what is
> an agreed upon best practice list of ACLs for an internet facing border
> router. I'm talking about things like bogons, private Ip addresses, et
> cetera. If anyone is aware of anything like this I'd like to see it.
>=20
> Thanks,
> -Drew
>=20
>

------=_Part_10461_15026345.1118672725722
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

block bogons<br>
block your ips from outside<br>
block rfc 1918 (martians)<br>
block common worms ports<br>
<br>
<br><br><div><span class=3D"gmail_quote">On 6/13/05, <b class=3D"gmail_send=
ername">Drew Weaver</b> &lt;<a href=3D"mailto:drew.weaver@thenap.com">drew.=
weaver@thenap.com</a>&gt; wrote:</span><blockquote class=3D"gmail_quote" st=
yle=3D"border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex=
; padding-left: 1ex;">
<br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;I'm just curious if any=
one has ever published a list of what is<br>an agreed upon best practice li=
st of ACLs for an internet facing border<br>router. I'm talking about thing=
s like bogons, private Ip addresses, et
<br>cetera. If anyone is aware of anything like this I'd like to see it.<br=
><br>Thanks,<br>-Drew<br><br></blockquote></div><br>

------=_Part_10461_15026345.1118672725722--
home help back first fref pref prev next nref lref last post