Spoofing ASNs (Re: SNMP DDoS: the vulnerability you might not know you have)
Christopher Morrow
morrowc.lists at gmail.com
Sun Aug 11 16:02:52 UTC 2013
On Sun, Aug 11, 2013 at 11:40 AM, Florian Weimer <fw at deneb.enyo.de> wrote:
> Apparently, they're implementing DNS proxy by destination-NATting, and
> because they listen also on the WAN interface, they get the source
> address wrong.
>
> This is quite scary.
which part? the fact that most NAT implementations on CPE are crap? or
the spoofing bit?
More information about the NANOG
mailing list