To varnish sysadmin: Blocked IPv4 Space 50.0.0.0/8

Richard Chiswell richard.chiswell at mangahigh.com
Wed Nov 17 18:02:11 CET 2010


Well, it's worth blocking
0.0.0.0/8, 10.0.0.0/8, 127.0.0.0/8, 169.254.0.0/16, 172.16.0.0/12, 
192.168.0.0/16
as those ranges shouldn't appear on the public intertubes. [ 
http://www.rfc-editor.org/rfc/rfc3330.txt ]

Rich

On 17/11/2010 16:56, Chris Cook wrote:
> Just as a friendly FYI - your bogon filter should probably match this: http://www.team-cymru.org/Services/Bogons/bogon-bn-nonagg.txt (and realistically you might as well not block most of that since it will all be allocated within the next 12 months).
>
> On Nov 17, 2010, at 9:04 AM, Tollef Fog Heen wrote:
>
>> ]] Ivan Dario Diaz
>>
>> | I have tested several IP's of Redpill Linpro AS (it seems like your
>> | Hosting Provider) and mostly of them works, but varnish related (deb
>> | trac planet www) IP's doesn't work. As you know there are a huge of
>> | users in amazon EC2 using Varnish. It will be a problem to all of them.
>> |
>> | I'm not saying that the blocking is in your servers. But all my tests
>> | appoint to that. Please help us with that.
>>
>> Indeed, our firewall had the «block bogon networks» turned on, and it
>> seems like the list hadn't been updated in a while.  I've fixed this
>> now.
>>
>> -- 
>> Tollef Fog Heen
>> Varnish Software
>> t: +47 21 98 62 64
>>
>> _______________________________________________
>> varnish-misc mailing list
>> varnish-misc at varnish-cache.org
>> http://lists.varnish-cache.org/mailman/listinfo/varnish-misc
>
> _______________________________________________
> varnish-misc mailing list
> varnish-misc at varnish-cache.org
> http://lists.varnish-cache.org/mailman/listinfo/varnish-misc




More information about the varnish-misc mailing list