Queries regarding forwarders
Lee
ler762 at gmail.com
Fri Oct 26 00:26:32 UTC 2018
On 10/25/18, Grant Taylor via bind-users <bind-users at lists.isc.org> wrote:
> On 10/25/2018 03:25 PM, Lee wrote:
>
>> I'm missing what filtering out things like benchmarking & documentation
>> network addrs gets you beyond maybe saving some bandwidth?
>
> I do use all sorts of IP ranges (test networks extensively) in my home /
> lab networks. So I'd really rather external things not resolve to an
> address that I may be using. But that's me being atypical.
If you're using those addresses internally it makes sense to filter
them from 'outside'.
>> Same deal with using RPZ to block IPv4 BOGONs. What does RPZ blocking
>> get you that you don't get by blocking them on your edge routers?
>
> Defense in depth.
>
> It's more of an exercise of can it be done. Read: Can I concoct
> something that will receive feed from Team Cymru's BGP Bogon Rout Server
> and turn it into an RPZ.
I play those games at times also :) So it sounds like what I was
missing is that you like a challenge & are using more address space
that I thought.
Regards,
Lee
More information about the bind-users
mailing list