port scanning from spoofed addresses

Gregory Edigarov greg at bestnet.kharkov.ua
Fri Dec 4 09:08:55 UTC 2009


On Thu, 3 Dec 2009 13:03:20 -0500
Matthew Huff <mhuff at ox.com> wrote:

> I'm not at all concerned about door-knob twisting or network
> scanning. What concerns me is that the source addresses are spoofed
> from our address range and that our upstream providers aren't willing
> to even look at the problem. 
> 
But that can be easy addressed by yourself.
just do not allow traffic originating from your range on your
external interfaces.

-- 
With best regards,
	Gregory Edigarov




More information about the NANOG mailing list