Pavan, I am trying to block RFC1918 networks, in addition to unassigned ones (IANA reserved or not assigned) from getting in or out on the public interface. Any traffic coming in (or leaving) from such networks on the public interface undoubtedly has a spoofed source IP and should be dropped. As mentioned before, classes A & D networks are fairly well documented on IANA's site <http://www.iana.org/assignments/ipv4-address-space>, but B and C are listed as "various registries" and in bulk, which is of no help. I need a list of 128~191 and 192~223 netblocks which are either reserved or not assigned. Site filtering based on content classification is an entirely different matter that is best handled at the http proxy level, and is of no relevance here. Thank you for any help, Regards, George. -----Original Message----- From: Pavan Gokarn [mailto:pavang@techknowledge.ws] Sent: Wednesday, March 05, 2003 7:23 AM To: George J. Jahchan, Eng. Subject: Re: Unassigned Networks List what do you want to do george. do u want to block some sites which are bad(porn) or block a range of specific ip addresses. in the former case I might me able to help you. regards
