[NTLUG:Discuss] internet routing of private IPs causing problems..
brian at pongonova.net
brian at pongonova.net
Wed Jan 9 16:41:27 CST 2008
On Wed, Jan 09, 2008 at 11:28:16AM -0600, Richard Geoffrion wrote:
> That SEEMS pretty clear cut to me and in all my years of networking has
> been the standard. Now I'm being told by a (supposedly) major
> DATA/TELCOM company that it is the responsibility of the customer
> premise equipment performing NAT to filter outbound requests to IP
> address in the specified private address range.
Why would you want to forward packets to private networks beyond your
firewall? You *do* have a firewall, right?
I'm certainly no network admin, but I've configured many servers (both
personal and business), and one of the first things I've always done
it to block outbound traffic to private networks.
I think you bear some responsibility in not polluting your upstream
provider's routers with private network traffic. It may not be the
RFC-thing to do, but it's certainly the polite thing to do.
--Brian
More information about the Discuss
mailing list