Implementing the bogon list
Bryan Irvine
sparctacus at gmail.com
Fri Apr 9 20:32:07 UTC 2010
I think that's really designed for router ACL's.
Most reliable method might be to subscribe to their BGP feed.
I'm not sure what you'd do with regards to BIND or even why you'd want
to handle it there.
.
On Fri, Apr 9, 2010 at 1:27 PM, Alex <mysqlstudent at gmail.com> wrote:
> Hi,
>
> I'm interested in implementing an updated Cymru bogon list, but would
> like some examples on how best to do this. Much of my searching has
> resulted in old configurations that weren't complete and seemed to
> contain errors.
>
> Where is the best place to go to find a template on how best to do
> this? I understand it's a combination of creating a zone with the IP
> ranges in an ACL, but which IPs should actually go in that ACL? There
> is a list of four or five different sets here:
>
> http://www.cymru.com/Documents/bogon-dd.html
>
> Is there an actual zone file with the contents of these IPs, or is it
> all implemented by listing them in the ACL in named.conf?
>
> Once I've implemented it in bind, could it then be used somehow at
> smtp connect time to reject spoofed connections? How exactly do you
> use it?
>
> Thanks,
> Alex
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
More information about the bind-users
mailing list