[DNSOP] I-D Action:draft-ietf-dnsop-as112-under-attack-help-help-04.txt

[Internet-Drafts@ietf.org]

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Domain Name System Operations Working Group of the IETF.


	Title           : I'm Being Attacked by PRISONER.IANA.ORG!
	Author(s)       : J. Abley, W. Maton
	Filename        : draft-ietf-dnsop-as112-under-attack-help-help-04.txt
	Pages           : 15
	Date            : 2010-07-29

Many sites connected to the Internet make use of IPv4 addresses which
are not globally unique.  Examples are the addresses designated in
RFC1918 for private use within individual sites.

Hosts should never normally send DNS reverse mapping queries for
those addresses on the public Internet.  However, such queries are
frequently observed.  Authoritative servers are deployed to provide
authoritative answers to such queries as part of a loosely-
coordinated effort known as the AS112 project.

Since queries sent to AS112 servers are usually not intentional, the
replies received back from those servers are typically unexpected.
Unexpected inbound traffic can trigger alarms on intrusion detection
systems and firewalls, and operators of such systems often mistakenly
believe that they are being attacked.

This document provides background information and technical advice to
those firewall operators.

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-ietf-dnsop-as112-under-attack-help-help-04.txt

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.

ftp://ftp.ietf.org/internet-drafts/draft-ietf-dnsop-as112-under-attack-help-help-04.txt"><ftp://ftp.ietf.org/internet-drafts/draft-ietf-dnsop-as112-under-attack-help-help-04.txt>