traffic filtering

Thank you all for your responses public and private. About 4 respondents
stated they do filter (traffic) on /24 network/broadcast boundaries.

It appears that microsoft boxes may have some issues due to bugs in their
networking code. I'm going to attempt to address those with Microsoft.

In response to my queries, none of the respondents stated why rate-limitting
certain icmp message types would not be sufficient to all-out filtering.
The prevalent supporting argument was that old or buggy gear may have
trouble with addresses ending in ".0" or ".255", and that others filter.

Several folks mentioned sizable providers that do allocate addresses
with ".0" and ".255" (some were mentioned privately, so I'll omit those)
to include mediaone and aol.

How folks choose to filter is their own business, but I would respectfully
request that consideration be made into alternatives that address their
needs while encouraging vlsm, and connectivity for legitimate ip addresses.

Thank you all,
Stephen

* stephen.griffin@rcn.com (Stephen Griffin) [Thu 24 Jan 2002, 18:04 CET]:
[whether to filter addresses at the boundaries of /24's]

It appears that microsoft boxes may have some issues due to bugs in their
networking code. I'm going to attempt to address those with Microsoft.

At a previous employer handing out addresses ending in .0 or .255 out of
a netblock in "traditional class C space" to dialup customers often
caused problems for them. I don't know whether that was due to the
equipment used (Cisco AS5300/AS5800) or to the clients (Windows 98 and
similar ilk); I suspect the latter, though, although the former had
their own set of problems...

Regards,

  -- Niels.