[c-nsp] dropping traffic for RFC3330 networks
lee.e.rian at census.gov
lee.e.rian at census.gov
Mon Aug 28 17:24:35 EDT 2006
Hi All,
Instead of forwarding traffic with invalid destination addresses to our ISP
I'd prefer to send it to the bit bucket.
I know about the bogon list (http://www.cymru.com/Documents/bogon-dd.html)
but I don't want to have to update our list of networks to black-hole.
What I'm looking for is a list of networks that most probably never will be
valid Internet destination addresses.
Are there any routes that should be added or removed from this list?
ip route 0.0.0.0 255.0.0.0 null0
ip route 10.0.0.0 255.0.0.0 null0
ip route 127.0.0.0 255.0.0.0 null0
ip route 128.0.0.0 255.0.0.0 null0
ip route 169.254.0.0 255.255.0.0 null0
ip route 172.16.0.0 255.255.0.0 null0
ip route 191.255.0.0 255.255.0.0 null0
ip route 192.0.0.0 255.255.255.0 null0
ip route 192.0.2.0 255.255.255.0 null0
ip route 192.168.0.0 255.255.0.0 null0
ip route 198.18.0.0 255.254.0.0 null0
ip route 223.255.255.0 255.255.255.0 null0
ip route 240.0.0.0 240.0.0.0 null0
Thanks,
Lee
More information about the cisco-nsp
mailing list