>>>>> "Suresh" == Suresh Ramasubramanian <linux@???> writes:
Suresh> now just one comment -
>> RFC1918=10.0.0.0/8 : 172.16.0.0/12 : 192.168.0.0/16
>> # To or from IPs we don't want to handle mail for (localhost/APIPA/test block)
>> # Add RFC1918 for an internet only connected system
>> BOGUSIPS=127.0.0.1/8 : 169.254.0.0/16 : 192.0.2.0/24 : RFC1918
>> #BOGUSIPS=127.0.0.1/8 : 169.254.0.0/16 : 192.0.2.0/24
Suresh> There's a much longer list actually. You might want to use
Suresh> Rob Thomas' bogons.cymru.com, originally available as a bgp
Suresh> feed - but also as a dnsbl -
http://www.cymru.com/Bogons/#dns
Suresh> ...
without commenting on how these IPs are being used in this particular
case, I will note that the cymru.com list arbitrarily conflates two
quite different kinds of IP addresses - ones reserved for special
purposes, and ones which simply happen not to be allocated yet.
Obviously the latter category changes far more frequently than the
former, and there is little point in blocking it at router level unless
you are being subjected to forged-source DoS attacks which are between
one and three times your ability to handle.
--
Andrew, Supernews