traffic filtering

Stephen Griffin stephen.griffin at
Mon Jan 21 22:53:16 UTC 2002


I'm curious about how many networks completely filter all traffic to
any ip address ending in either ".0" or ".255".

I'm curious because any network /0-/23,/31,/32 can legitimately have
ip addresses in-use which end as such. /32's can obviously have (most) any ip
address, since there is no notion of a network or broadcast address. /31
doesn't have a directed broadcast. For /0-/23 only the first ".0" and the
last ".255" correspond to reserved addresses. All of the intervening
addresses are legal.

Is this type of filtering common? What alternate solutions are available
to mitigate (I'm assuming) concerns about smurf amplifiers, that still
allow traffic to/from legitimate addresses. What rationale is used to
filter all traffic to network/broadcast addresses of /24 networks while
ignoring network/broadcast of /25-/30? For that matter, what percentage
of smurf amplifiers land on /24 boundaries?


More information about the NANOG mailing list