[lug] comcast and multiple IPs
Neil Doane
caine at antediluvian.org
Wed Jun 9 16:20:43 MDT 2004
* George Sexton (gsexton at mhsoftware.com), on [06-09-04 08:04], wrote:
> Let's face it. The Comcast IP's are some of the most heavily probed out
> there. Bad guys know that there is a whole class A full of unsecured
> machines that are hanging out there in the breeze. If you consider that
> you can buy a cheapie cable router for about $40.00, or turn an old
> Linux machine into a firewall/router, it's really inexcusable to not do
> this.
And probably this, which is what I do:
$IPTABLES -A INPUT -s 24.0.0.0/8 -j DROP
$IPTABLES -A INPUT -s 67.166.0.0/16 -j DROP
> I have Linux router with about 5 machines behind it, and I haven't seen
> any letter.
I have a Linux router with alot of machines behind it and I haven't seen any
Comcast packets. ;) (If anyone else knows any networks Comcast uses I can
block, please let me know...since I put in those rules, my snort logs have
never been cleaner. :)
Neil
>
> George Sexton
> MH Software, Inc.
> Home of Connect Daily Web Calendar Software
> http://www.mhsoftware.com/connectdaily.htm
> Voice: 303 438 9585
>
> -----Original Message-----
> From: lug-bounces at lug.boulder.co.us
> [mailto:lug-bounces at lug.boulder.co.us] On Behalf Of Chip Atkinson
> Sent: Wednesday, June 09, 2004 7:36 AM
> To: lug at lug.boulder.co.us
> Subject: Re: [lug] comcast and multiple IPs
>
>
> I got the same letter myself. One of the four options that they list is
>
> "Purchase your own router from a retail location and connect it
> yourself,
> which will allow you to have multiple devices connected to the internet,
> but still use only one IP address"
>
> While I don't know everything about networking and was reminded of that
> fact recently, I don't believe that an extra IP assignment from a DHCP
> server on comcast would cost that much in processing on their end.
>
> Oh, I bet the reason may be that their equipment throttles bandwidth
> based
> on IP address, and the limitation is not on the cables.
>
> It's not a big deal though. It's their playground, and if I don't like
> it, I can always go back to the modem. (as if!)
>
> Chip
>
> On Tue, 8 Jun 2004, D. Stimits wrote:
>
> > ...
> > > Oh, on another note, one of my co-workers called Comcast and asked
> them
> > > if they were only allowing one PC or one IP address per household.
> > > Nobody could answer his question.
> > >
> >
> >
> > They very distinctly said one PC. There were astounded when I told
> them
> > we'd paid for 5 email addresses (we paid for 5 IP's) and they were not
> > ALL being used from one machine. While I have phrased it at times as 5
> > email addresses, during installation and prior conversations it was
> > DEFINITELY 5 independent IP addresses. But those terms change without
> > notice monthly, and when they do, Comcast throws out the records of
> > prior deals (I mean this literally, not figuratively, any deal older
> > than 2 months is purged from their system). It may depend on who you
> > ask, but I brought it all the way up to the manager there at the time,
> > he claims a lot of things that were not true. The word that comes to
> > mind is something like "hogwash". Apparently they are pushing to gain
> > new "optional features" that people can pay more from, as well as
> trying
> > to remove more than one IP from each household as a newer policy.
> >
> > D. Stimits, stimits AT comcast DOT net
> > _______________________________________________
> > Web Page: http://lug.boulder.co.us
> > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> > Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
> >
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
>
> _______________________________________________
> Web Page: http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: lug.boulder.co.us port=6667 channel=#colug
More information about the LUG
mailing list