[dns-operations] Looking for a public blackhole/sinkhole IP address

wbrown at e1b.org wbrown at e1b.org
Mon Dec 1 18:46:09 UTC 2014

Not replying to anyone in particular....

Wouldn't it be possible to pick an address on your own network (perhaps in 
your DMZ) and then create rules on any firewall in front of that address 
that simply drops all packets?

If a public address were announced, why not have an outbound firewall rule 
to drop the traffic?

I suppose this may not scale to major ISPs/backbone carriers however.


William Brown
Messaging Team
Technology Services, WNYRIC, Erie 1 BOCES

Confidentiality Notice: 
This electronic message and any attachments may contain confidential or 
privileged information, and is intended only for the individual or entity 
identified above as the addressee. If you are not the addressee (or the 
employee or agent responsible to deliver it to the addressee), or if this 
message has been addressed to you in error, you are hereby notified that 
you may not copy, forward, disclose or use any part of this message or any 
attachments. Please notify the sender immediately by return e-mail or 
telephone and delete this message from your system.

More information about the dns-operations mailing list