Comments (5)
There are more non-public ranges than just RFC1918 and RFC6598. Many firewalls solve this problem by downloading a bogon list. The list includes RFC1918, RFC6598, the link local addresses, various test ranges, etc. It also includes ranges that have not been assigned to an ISP or end user yet. The lists are updated periodically, typically once a week or something like this.
IMO, the minimum would be to use a static copy of the "The Text Bogon List, Aggregated" from copied from here: https://team-cymru.com/community-services/bogon-reference/bogon-reference-http/
Even better would be to build a mechanism to update that list periodically (1-2 a day at most should be fine, I think my firewall is set to update once a week) and use the "IPv4 Fullbogons" list on that same bogon reference page.
from erlang-libp2p.
That's a pretty short list, how often does it realistically change?
from erlang-libp2p.
That's a pretty short list, how often does it realistically change?
The version of the list he used in the code is just the RFC'd ranges and in ipv4 land, that's really all there is anymore, everything else is allocated. So it's only likely to change when an existing range is changed. So maybe once every few years? But if there is ever ipv6 support than that changes more often.
from erlang-libp2p.
To add, more extensive bogon lists also includes allocated public IPs address blocks that have not been assigned to an ISP. I do not think that is necessary as the larger risk is misconfiguration using private/shared blocks rather than the broader set of allocated but yet to be assigned IPs. Someone would need to intentionally use an unassigned IP which is not really to their advantage in any way. Misconfigure is the more likely scenario.
from erlang-libp2p.
from erlang-libp2p.
Related Issues (20)
- stungun reporting private ip address ranges HOT 2
- infinite loop, relay through self p2p addresses
- Hotspots going relayed into after 2021-09-03~ update multiple users HOT 33
- "listen_addrs" changes to a random IP address, gossiping wrong IP address to the Helium Network HOT 10
- Sensecap issues after firmware update 2021.09.03.0 HOT 24
- IPv6 Support HOT 9
- force sync with known "good" node? HOT 1
- peerbook random should not count stale peers against it's total check amount
- proliferation of empty listen address HOT 4
- No sending beacons HOT 1
- stungun issues: detected NAT type symmetric HOT 4
- Miner can't connect to peers. not_found errors in logs. Results in hotspot not witnessing anything. HOT 22
- Validators connections linger for 6 hours after Consensus Group
- hotspot has a different listen address than the one listed in the Helium API
- listening address error
- Undefined Error in process: {badmatch,{error,eagain}
- Possibly skipping first peer when randomly selecting
- Fatal Validator Crash - `libp2p_peerbook:random` HOT 1
- Where should people ask technical questions about erlang-libp2p?
- Where to have technical discussions about erlang-libp2p? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from erlang-libp2p.