Department of Defence allowed in by default

General public discussion.

Moderators: BBear, theunknownhost, flaguy

Post Reply
User avatar
Arf
Official Test Penquin
Posts: 9103
Joined: Tue Apr 09, 2002 12:00 am
Location: IDAHO, USA
Contact:

Department of Defence allowed in by default

Post by Arf » Mon Feb 08, 2016 1:41 pm

If you run this command on an LW server, you'll get a peculiar response:

Code: Select all

# iptables -L ALLOWIN -n --line-numbers | grep 205.0.0.0
1    ACCEPT     all  --  205.0.0.0/8          0.0.0.0/0  
Who owns that IP range?
OrgName: DoD Network Information Center
OrgId: DNIC
Address: 3990 E. Broad Street
City: Columbus
StateProv: OH
PostalCode: 43218
Country: US
RegDate:
Updated: 2011-08-17
Ref: http://whois.arin.net/rest/org/DNIC

So, generally speaking, the Department of Defence can bang away at your server without getting blocked. What's worse is that they don't own/manage all the IPs on that range. I found all this while trying to block 205.186.132.144 owned by a private entity. I couldn't because this IP range is white listed outside of the regular firewall.

This IP range can't be removed via the csf filewall interface. But it can be fond/removed via iptables command.
tutorial: http://www.cyberciti.biz/faq/iptables-d ... -firewall/

User avatar
Sapphyre
Official Test Penquin
Posts: 3337
Joined: Tue Nov 19, 2002 2:50 am
Location: Canada

Re: Department of Defence allowed in by default

Post by Sapphyre » Thu Feb 11, 2016 7:32 pm

maybe it's just you ...
:wink: :o
It's a crested auklet

User avatar
Arf
Official Test Penquin
Posts: 9103
Joined: Tue Apr 09, 2002 12:00 am
Location: IDAHO, USA
Contact:

Re: Department of Defence allowed in by default

Post by Arf » Thu Feb 11, 2016 7:51 pm

Yep, just me I'm to discover.

User avatar
Sapphyre
Official Test Penquin
Posts: 3337
Joined: Tue Nov 19, 2002 2:50 am
Location: Canada

Re: Department of Defence allowed in by default

Post by Sapphyre » Tue Feb 16, 2016 10:05 pm

That was a joke, seriously ?
Woo, now I'm intrigued.
It's a crested auklet

User avatar
Arf
Official Test Penquin
Posts: 9103
Joined: Tue Apr 09, 2002 12:00 am
Location: IDAHO, USA
Contact:

Re: Department of Defence allowed in by default

Post by Arf » Tue Feb 16, 2016 10:52 pm

I didn't get a good explanation but I gave up trying after going back and forth. I don't think anyone was doing anything bad. Just a weird thing. Who knows, maybe I did that myself some time back... on all my servers. Weird though.

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest