Re: [44net] Misconfiguration of gateway tunnel interfaces

Lynwood, What's about ? -----Message d'origine----- De : 44Net [mailto:44net-bounces+f1sca=numericable.fr@hamradio.ucsd.edu] De la part de lleachii--- via 44Net Envoyé : lundi 7 mars 2016 00:08 À : 44net(a)hamradio.ucsd.edu Cc : lleachii(a)aol.com Objet : [44net] Misconfiguration of gateway tunnel interfaces (Please trim inclusions from previous messages) _______________________________________________ All, I've been observing the following: a. - gateways sending RFC1918 addresses in the inside header (e.g. 192.168.11.0/24) b- gateways encapsulating their commercial IP in the inside header. While this reply is sent in case B, my gateway, as well as AMPRGW, receives ICMP destination port unreachable responses for these requests. Since the related traffic is an IP PROTOCOL 4 - IPENCAP packet to my commercial IP, and not the internal TCP, UDP, etc. packet addressed to my 44LAN. It also produces unneeded traffic to your border which is statefully firewalled. - F1SCA's gateway is producing such traffic Please let me know if you discover the anomaly (and/or how it is solved). - Lynwood KB3VWG _________________________________________ 44Net mailing list 44Net(a)hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net