Security Incidents mailing list archives
Re: Private networks and home.{net|com}
From: bmah () CA SANDIA GOV (Bruce A. Mah)
Date: Tue, 8 Feb 2000 08:41:36 -0800
If memory serves me right, Etaoin Shrdlu wrote:
So we're looking for a little odd something, and we do a simple traceroute, and what do we see? What the heck are those IP addresses at hops 15, 20, and 21? I thought that those weren't supposed to be passed, and there are three of them in one traceroute. This kind of destroys the meaning of the concept of a "private network," especially if insane numbers like these are going to show up in routing tables. Am I just not understanding something here?
As was just recently discussed in the "Strange traceroute" thread here, @Home uses 10/8 addresses on their internal links. They don't show up in the default-free routing tables. It's bad for things like traceroute, because you'll never see the ICMP error packets if you filter out packets from private-use addresses. On the other hand, the average @Home user isn't going to notice this at all, since they don't care about the IP addresses of their ISP's routers. I suspect they do this in an attempt to make their internal routers less vulnerable to attack. Bruce. <HR NOSHADE> <UL> <LI>application/pgp-signature attachment: stored </UL>
Current thread:
- Strange traceroute RB (Feb 02)
- Re: Strange traceroute Bruce A. Mah (Feb 03)
- Re: Strange traceroute Alexandr Kovalenko (Feb 03)
- Re: Strange traceroute Mixter (Feb 08)
- <Possible follow-ups>
- Re: Strange traceroute Jacobs, Guy Edward (Feb 03)
- Re: Strange traceroute RB (Feb 03)
- Re: Strange traceroute CyberPsychotic (Feb 05)
- Re: Strange traceroute Dragos Ruiu (Feb 07)
- Private networks and home.{net|com} Etaoin Shrdlu (Feb 07)
- Strange ping reply packets Artur Nowak (Feb 08)
- Re: Private networks and home.{net|com} Bruce A. Mah (Feb 08)
- Re: Private networks and home.{net|com} Dragos Ruiu (Feb 09)
- E-Mail relay or break in? Seth Georgion (Feb 08)
- Re: E-Mail relay or break in? JJ Gray (Feb 09)
- Re: E-Mail relay or break in? Graeme (Feb 09)
- Re: E-Mail relay or break in? Nathan Nichols (Feb 09)
- Re: Strange traceroute CyberPsychotic (Feb 05)
- Re: E-Mail relay or break in? Ryan Russell (Feb 09)
- Recent DDoS Bino Gopal (Feb 08)
- Re: Recent DDoS Qmail Admin (Feb 09)
- Port 34545 jimwebb () EASYSTREET COM (Feb 09)
- Re: Recent DDoS MMS26 (Feb 09)