[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

BCP38.info

Subject: BCP38.info
From: rdobbins at arbor.net (Dobbins, Roland)
Date: Mon, 3 Feb 2014 07:22:19 +0000
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>

On Jan 29, 2014, at 3:03 AM, Jared Mauch <jared at puck.nether.net> wrote:

> Sure, but this means that network is allowing the spoofing :)
> 
> What I did last night was automated comparing the source ASN to the dest ASN mapped to and reported both the IP + ASN on a single line for those that were interested.

This is pretty slick, relying upon broken CPE NAT implementations.  It's the only way I've heard of to remotely infer whether or not a given network allows spoofing.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton

Follow-Ups:
- BCP38.info
  - From: rdobbins at arbor.net (Dobbins, Roland)

Prev by Date: TWC (AS11351) blocking all NTP?
Next by Date: BCP38.info
Previous by thread: Ad Hoc Education Committee Call for Volunteers
Next by thread: BCP38.info
Index(es):
- Date
- Thread