blocklist-ipsets icon indicating copy to clipboard operation
blocklist-ipsets copied to clipboard
verified publisher icon firehol

Local IP range found in firehol_level1.netset blocklist

Open AlyaGomaa opened this issue 4 years ago • 4 comments

Hello, The local IP range 192.168.0.0/16 is found in firehol_level1.netset blocklist and is causing false positives.

AlyaGomaa avatar Feb 04 '22 12:02 AlyaGomaa

also 172.16.0.0/12 and 10.0.0.0/8 were found in the same blocklist.

AlyaGomaa avatar Feb 04 '22 13:02 AlyaGomaa

also The network 224.0.0.0/3 is the multicast network. it was found in the same blocklist.

AlyaGomaa avatar Feb 28 '22 10:02 AlyaGomaa

See the comment here: https://github.com/firehol/blocklist-ipsets/issues/70#issuecomment-402434969

The firehol_level1 list is meant to be used on internet-facing interfaces because it includes bogons, which are networks that should not be routed on the public Internet.

alanorth avatar Mar 13 '22 19:03 alanorth

Hi! then we will delete those manually from the list before using in local networks. Since our local networks can have connections from the internet in some configurations. This is because it doesn't use NAT and all the computers have a public IP internally.

eldraco avatar Mar 14 '22 10:03 eldraco