分类: LINUX
2012-03-15 22:32:31
bogan ['bogən] ['bəugən]
bogon是指那些不该出现在internet路由表中的地址。
这些地址应该包括:
1,私有地址如10,172.16-32,192.168.....
2,还未正式分配出去的地址
bogon定义:
Bogon is a bogus IP address and an informal name for an on the public that claims to be from an area of the reserved, but not yet allocated or delegated by the (IANA) or a delegated (RIR). The areas of unallocated address space are called the bogon space.
For example, addresses from 49.0.0.0 – 49.255.255.255 have not yet been allocated.
Bogons are not the same as ranges, such as 10.x.x.x and 192.168.x.x.
Which are reserved for .
Many and end-user filter and block bogons, because they have no legitimate use, and usually are the result of accidental or malicious misconfiguration. Bogons can be filtered by using , or by .
that are bogon today may not be bogon tomorrow. IANA and other registries frequently assign new address space to ISPs. Announcements of new assignments are often published on operators’ (such as ) to ensure that operators have a chance to remove bogon filtering for addresses that have become legitimate.
IANA maintains a list of allocated and reserved IPv4 netblocks.
除了上面的定义之外,还有一种定义的说法:
bogon就是Martians(就是私有地址和保留地址的称呼,详见RFC1918和RFC5735)和IANA未分配给RIR的并集。
这里有一份由IANA维护的IPV4
在这里可以看到 005/8就是未分配的地址,也就是bogon range。
同时还有一个概念叫做Fullbogons,它的定义范围比bogon还要大,指的是那些虽然IANA分配给RIR的地址,但是这些地址RIR没有分配给ISP或者end-user使用的地址。
所以来讲,bongon是没有什么用处的,需要在路由上设置ACL或者做BGP BLACKHOLING过滤掉
那么,我的主机名变成bogon是怎么回事又该怎么办呢?
可能是在反向解析IP时,DNS没有过滤bogon,所以把内网的IP反向解析成了bogon
所以把DNS换成一个过滤了bongon的DNS即可
======================================