Michelle Konzack wrote: > The request was made on my Workstation <192.168.0.91> where the NS > is <192.168.0.74>. So, from the AUTHORITY SECTION I can see, my NS > server has asked the Internet (as a forwarder) and the response came > from the server <prisoner.iana.org> which is a part of the AS112 > project. > > Blocking anything except <192.168.0>, <192.168.1> and <192.168.2> > would mean I have to setup blocks on 1000th of subnets...
Surely someone has already suggested you run a local nameserver as authoritative for the rfc1918 networks? I agree that it has to be possible to stop SA (or whoever it is) from making those lookups, but until you've cured the problem, a local authoritative nameserver will at least deal with the symptoms. /Per Jessen, Zürich
