Re: What's going on here?

From: Valdis.Kletnieksat_private
Date: Fri Aug 30 2002 - 13:38:59 PDT

On Thu, 29 Aug 2002 18:21:07 -0000, wykkydat_private  said:

> Three scenarios, both based on the facts that (1) ZoneAlarm is host-based, 
> ans (2) 10.x is not an internet-routable protocol (as in, no router will 
> forward it outside of your own network):

An *AMAZING* number of routers will forward these things out into the Internet.

An even more amazing number of ISPs fail to do proper ingress routing to stop
borked packets from their customers entering into the Internet at large.

The fact that RFC1918 space (10.x.x.x, etc) isn't usable on the public
network (by definition) doesn't mean that you won't see inbound packets
with RFC1918 source addresses.
				Valdis Kletnieks
				Computer Systems Senior Engineer
				Virginia Tech

This archive was generated by hypermail 2b30 : Mon Sep 02 2002 - 10:36:52 PDT