[NTLUG:Discuss] internet routing of private IPs causing problems..*WORKAROUND*

[Richard Geoffrion]

Richard Geoffrion wrote:
> Yes, I could (and should...and probably will have to) setup firewall 
> rules to block the forwarding of private IP addresses out onto the 
> internet, but that makes no excuse for a seemingly major Telcom player 
> (read: McLeodUSA) to allow their customers to affect THEIR private IP 
> networks.
>   
and for what it's worth,

-A OUTPUT -d 192.168.0.0/16 -o eth0 -j REJECT
-A OUTPUT -d 172.16.0.0/12 -o eth0 -j REJECT
-A OUTPUT -d 10.0.0.0/8 -o eth0 -j REJECT

does nicely to block the private range of addresses to the eth0/outbound 
interface.

Problem solved -- after a fashion.  I'm still gonna call the McLeod tech 
support guys a bunch of putzs..

-- 
Richard