[Sysadmins] Eircom DNS woes...

Colm MacCárthaigh colm at allcosts.net
Tue Jul 14 18:47:14 IST 2009


On Tue, Jul 14, 2009 at 6:43 PM, James Raftery<james at now.ie> wrote:
> On 14 Jul 2009, at 18:30, ajh wrote:
>> I am pretty sure 213.94.190.194 and 213.94.190.236 (the recursive
>> lookups) facing Eircom customers and handed out by RADIUS didn't allow
>> lookups from non-Eircom IPs before.
>
> Neither of these were answering my queries (from an eircom customer
> network) at about 21.00 last night. Queries are trivially spoofed to
> appear to come from an authorized IP address.

I'd have thought Eircom have RPF [1] or decent ACLs enabled on their
border routers though, if not that seems like a big problem.

[1] http://en.wikipedia.org/wiki/Reverse_path_forwarding

-- 
Colm



More information about the Sysadmins mailing list