2/5 Does anyone know which RFC (if any) has a list of ip addr
blocks that are considered invalid, (ex. 169.254.0.0/16)?
1918 only lists the private blocks. tia.
\_ 169.254/16 is used by dhcp autoconfig... essentially if you have
an ip network w/o a dhcp server and don't want to manually config
you ip int. it's similar to how ipx and appletalk config w/o a
seed router. -shac
\_ Well first explain what you mean by 'considered invalid' and maybe
we can find you your list.
\_ By invalid I mean pkts with src/dest addrs that are
in addr blocks which should never send traffic on the
internet. I'm trying to filter pkts with invalid ip
addr (spoofed pkts) and I wanted to know if there were
addr blocks other than the RFC 1918 private blocks
that I should be filtering. So far, I've just found
the 169.254.0.0/16 addr block which is used for dhcp
client auto-conf. I wanted to know if there were others.
\_ by 'should never' do you mean addr's that aren't
registered, or just addressees that aren't routable
10.0.0.0/8, 127.0.0.0/8, 169.254.0.0/16, 172.16.0.0/12, 192.0.2.0/24,
192.168.0.0/16, 224.0.0.0/4, 240.0.0.0/4 (These last two are
contiguous.) --scotsman
( which changes regularly -- get a BGP feed from
somewhere if you really want a list).
\_ i don't remember the exact page, but it's somewhere on http://ietf.org
and it goes like this:
10.0.0.0/8, 127.0.0.0/8, 169.254.0.0/16, 172.16.0.0/12,
192.0.2.0/24, 192.168.0.0/16, 224.0.0.0/4, 240.0.0.0/4
(These last two are contiguous.) --scotsman
\_ Thanks. I'll search on http://ietf.org to see if there are
others. BTW, do you know what the 192.0.2.0/24 block
is used for?
\_ It's used for examples (a la http://example.com, or the 555
telephone prefix) --scotsman |