43 lines
2.2 KiB
Plaintext
43 lines
2.2 KiB
Plaintext
define BOGON_ASNS = [
|
|
0, # RFC 7607
|
|
23456, # RFC 4893 AS_TRANS
|
|
64496..64511, # RFC 5398 and documentation/example ASNs
|
|
64512..65534, # RFC 6996 Private ASNs
|
|
65535, # RFC 7300 Last 16 bit ASN
|
|
65536..65551, # RFC 5398 and documentation/example ASNs
|
|
65552..131071, # RFC IANA reserved ASNs
|
|
4200000000..4294967294, # RFC 6996 Private ASNs
|
|
4294967295 # RFC 7300 Last 32 bit ASN
|
|
];
|
|
define BOGON_PREFIXES_V4 = [
|
|
0.0.0.0/8+, # RFC 1122 'this' network
|
|
10.0.0.0/8+, # RFC 1918 private space
|
|
100.64.0.0/10+, # RFC 6598 Carrier grade nat space
|
|
127.0.0.0/8+, # RFC 1122 localhost
|
|
169.254.0.0/16+, # RFC 3927 link local
|
|
172.16.0.0/12+, # RFC 1918 private space
|
|
192.0.2.0/24+, # RFC 5737 TEST-NET-1
|
|
192.88.99.0/24+, # RFC 7526 deprecated 6to4 relay anycast. If you wish to allow this, change `24+` to `24{25,32}`(no more specific)
|
|
192.168.0.0/16+, # RFC 1918 private space
|
|
198.18.0.0/15+, # RFC 2544 benchmarking
|
|
198.51.100.0/24+, # RFC 5737 TEST-NET-2
|
|
203.0.113.0/24+, # RFC 5737 TEST-NET-3
|
|
224.0.0.0/4+, # multicast
|
|
240.0.0.0/4+ # reserved
|
|
];
|
|
define BOGON_PREFIXES_V6 = [
|
|
::/8+, # RFC 4291 IPv4-compatible, loopback, et al
|
|
0064:ff9b::/96+, # RFC 6052 IPv4/IPv6 Translation
|
|
0064:ff9b:1::/48+, # RFC 8215 Local-Use IPv4/IPv6 Translation
|
|
0100::/64+, # RFC 6666 Discard-Only
|
|
2001::/32{33,128}, # RFC 4380 Teredo, no more specific
|
|
2001:2::/48+, # RFC 5180 BMWG
|
|
2001:10::/28+, # RFC 4843 ORCHID
|
|
2001:db8::/32+, # RFC 3849 documentation
|
|
2002::/16+, # RFC 7526 deprecated 6to4 relay anycast. If you wish to allow this, change `16+` to `16{17,128}`(no more specific)
|
|
3ffe::/16+, 5f00::/8+, # RFC 3701 old 6bone
|
|
fc00::/7+, # RFC 4193 unique local unicast
|
|
fe80::/10+, # RFC 4291 link local unicast
|
|
fec0::/10+, # RFC 3879 old site local unicast
|
|
ff00::/8+ # RFC 4291 multicast
|
|
]; |