nanog mailing list archives

Re: Summary with further Question: Domain Name System protection

From: vijay gill <vgill () vijaygill com>
Date: Tue, 17 Aug 2004 19:21:15 +0000


On Tue, Aug 17, 2004 at 03:57:17AM +0000, bmanning () vacation karoshi com wrote:

5. 'bogon'in BIND configuration could be used to
filter requests from RFC1918 address;


      this should be pushed to
      the router.  don't waste CPU cycles 
      on the Nameserver.


Hosts tend to be a faster writeoff cycle than routers in companies I've
worked at, therefore getting the benefit of moores law about 25% faster
than the routers.  Turn on firewalling in the host. That said, I do
filter 1918 at my edge.


/vijay

Current thread:

Re: Domain Name System protection, (continued)
- Re: Domain Name System protection Bill Woodcock (Aug 15)
  - Re: Domain Name System protection Joe Abley (Aug 16)
  - Summary with further Question: Domain Name System protection Joe Shen (Aug 16)
    - Re: Summary with further Question: Domain Name System protection Patrick W Gilmore (Aug 16)
    - Re: Summary with further Question: Domain Name System protection bmanning (Aug 16)
    - Re: Summary with further Question: Domain Name System protection Patrick W Gilmore (Aug 16)
    - Re: Summary with further Question: Domain Name System protection bmanning (Aug 16)
    - Re: Summary with further Question: Domain Name System protection Patrick W Gilmore (Aug 16)
    - Re: Summary with further Question: Domain Name System protection Joe Abley (Aug 17)
    - Re: Summary with further Question: Domain Name System protection Michael . Dillon (Aug 17)
    - Re: Summary with further Question: Domain Name System protection vijay gill (Aug 17)
    - Re: Summary with further Question: Domain Name System protection sthaug (Aug 17)
    - Re: Summary with further Question: Domain Name System protection Jeff Aitken (Aug 17)
    - filtering 1918 (was Re: Summary with...: Domain Name System ...) Paul Vixie (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Richard A Steenbergen (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) David A. Ulevitch (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Richard A Steenbergen (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Jared Mauch (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Richard A Steenbergen (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Patrick W Gilmore (Aug 18)
    - Re: filtering 1918 (was Re: Summary with...: Domain Name System ...) Paul Vixie (Aug 18)

(Thread continues...)