On Mon, 20 Apr 2015 17:02:09 -0700 (PDT) John Hardin <jhar...@impsec.org> wrote:
> I suggest that this rule should treat 0/8 as equivalent to 127/8. > That's essentially what it's reserved for, just "local to the LAN" > vs. "local to the host". Does 0/8 really mean that? On at least one OS (Linux), the TCP stack treats it specially: $ telnet 0.1.2.3 Trying 0.1.2.3... telnet: Unable to connect to remote host: Invalid argument The EINVAL return is certainly not the same as trying a nonexistent host: $ telnet 10.11.12.13 Trying 10.11.12.13... [hangs] I don't think 0/8 was intended for real traffic. I understood it to be intended only for hosts trying to discover their real IP addresses. Regards, Dianne.
