[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: reconsidering default exit policy



Sorry, gmail had fun with the formatting. Corrected and sorted by
port/ip, lets try this again:


# Common Abuses (ftp, gmail usenet)
ExitPolicy reject *:25 
ExitPolicy reject *:119 

# Often attacked protocols
ExitPolicy reject *:135-139 
ExitPolicy reject *:445 

# P2P Filesharing
ExitPolicy reject *:1214 
ExitPolicy reject *:4661-4666 
ExitPolicy reject *:6346-6429 
ExitPolicy reject *:6881-6999 

# IRC
ExitPolicy reject *:6667-6669 

# Bad Destination
ExitPolicy reject 0.0.0.0/8 

# Private Use
ExitPolicy reject 10.0.0.0/8       

# Origin
ExitPolicy reject 127.0.0.0/4 

# Private Use
ExitPolicy reject 169.254.0.0/16 
ExitPolicy reject 172.16.0.0/12  

# Test Net
ExitPolicy reject 192.0.2.0/24 

# 6to4 Anycast
ExitPolicy reject 192.88.99.0/24 

# Private Use
ExitPolicy reject 192.168.0.0/16 

# Benchmarks
ExitPolicy reject 198.18.0.0/15 

# Multicast
ExitPolicy reject 224.0.0.0/4 

# Else, Accept All
ExitPolicy accept *:*