On Thu, 29 Aug 2002 18:21:07 -0000, wykkydat_private said: > Three scenarios, both based on the facts that (1) ZoneAlarm is host-based, > ans (2) 10.x is not an internet-routable protocol (as in, no router will > forward it outside of your own network): An *AMAZING* number of routers will forward these things out into the Internet. An even more amazing number of ISPs fail to do proper ingress routing to stop borked packets from their customers entering into the Internet at large. The fact that RFC1918 space (10.x.x.x, etc) isn't usable on the public network (by definition) doesn't mean that you won't see inbound packets with RFC1918 source addresses. -- Valdis Kletnieks Computer Systems Senior Engineer Virginia Tech
This archive was generated by hypermail 2b30 : Mon Sep 02 2002 - 10:36:52 PDT