Martian list of IP's to block???
Rubens Kuhl Jr.
rkuhljr at uol.com.br
Fri Oct 1 15:42:40 UTC 1999
> deny ip host 0.0.0.0 any log
> deny ip 127.0.0.0 0.255.255.255 any log
> deny ip 10.0.0.0 0.255.255.255 any log
> deny ip 172.16.0.0 0.15.255.255 any log
> deny ip 192.168.0.0 0.0.255.255 any log
> deny ip xxx.xxx.xxx.0 0.0.0.255 any log
> deny ip 224.0.0.0 31.255.255.255 any log
Routing those networks to nul0 and turning 'ip verify unicast reverse-path'
on CEF-enabled Cisco routers does this without CPU load or does not ?
Rubens Kuhl Jr.
More information about the NANOG
mailing list