On 09/28/2015 09:49 PM, Amir Caspi wrote:
On Sep 28, 2015, at 1:34 PM, Axb <axb.li...@gmail.com> wrote:
you may need to start looking at a local RBL and start blocking IP ranges
been blocking snowshoe from Baraka Streaming Technologies Inc 38.113.188.0/22
since 2014-06-18 - no complaints - ymmv
Will look into it, but that doesn't really address my questions. It would take care of
this batch of snowshoe but I'm thinking more generally. Would a "forged" rule
be worthwhile, or not recommended for some reason? (If low-scoring.) And why is
HTML_FONT_LOW_CONTRAST just a placeholder when network tests are enabled?
whois is your friend...
Not sure how whois would have helped me here... the SOA for this IP range is
amanah.com, but that doesn't really tell me much.
Thanks.
you run whois on the IP...
X-ClientAddr: 38.113.189.110
take a look... way down...
whois 38.113.189.110
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#
#
# The following results may also be obtained via:
#
http://whois.arin.net/rest/nets;q=38.113.189.110?showDetails=true&showARIN=false&showNonArinTopLevelNet=false&ext=netref2
#
# start
NetRange: 38.0.0.0 - 38.255.255.255
CIDR: 38.0.0.0/8
NetName: COGENT-A
NetHandle: NET-38-0-0-0-1
Parent: ()
NetType: Direct Allocation
OriginAS: AS174
Organization: PSINet, Inc. (PSI)
RegDate: 1991-04-16
Updated: 2011-05-20
Comment: Reassignment information for this block can be found at
Comment: rwhois.cogentco.com 4321
Ref: http://whois.arin.net/rest/net/NET-38-0-0-0-1
OrgName: PSINet, Inc.
OrgId: PSI
Address: 2450 N Street NW
City: Washington
StateProv: DC
PostalCode: 20037
Country: US
RegDate:
Updated: 2015-06-04
Comment: rwhois.cogentco.com
Ref: http://whois.arin.net/rest/org/PSI
ReferralServer: rwhois://rwhois.cogentco.com:4321
OrgNOCHandle: ZC108-ARIN
OrgNOCName: Cogent Communications
OrgNOCPhone: +1-877-875-4311
OrgNOCEmail: n...@cogentco.com
OrgNOCRef: http://whois.arin.net/rest/poc/ZC108-ARIN
OrgAbuseHandle: COGEN-ARIN
OrgAbuseName: Cogent Abuse
OrgAbusePhone: +1-877-875-4311
OrgAbuseEmail: ab...@cogentco.com
OrgAbuseRef: http://whois.arin.net/rest/poc/COGEN-ARIN
OrgTechHandle: IPALL-ARIN
OrgTechName: IP Allocation
OrgTechPhone: +1-877-875-4311
OrgTechEmail: ipal...@cogentco.com
OrgTechRef: http://whois.arin.net/rest/poc/IPALL-ARIN
RTechHandle: PSI-NISC-ARIN
RTechName: IP Allocation
RTechPhone: +1-877-875-4311
RTechEmail: ipal...@cogentco.com
RTechRef: http://whois.arin.net/rest/poc/PSI-NISC-ARIN
# end
# start
NetRange: 38.112.0.0 - 38.119.255.255
CIDR: 38.112.0.0/13
NetName: COGENT-NB-0002
NetHandle: NET-38-112-0-0-1
Parent: COGENT-A (NET-38-0-0-0-1)
NetType: Reallocated
OriginAS:
Organization: PSINet, Inc. (PSI)
RegDate: 2003-08-20
Updated: 2004-03-11
Comment: ReferralServer: rwhois://rwhois.cogentco.com:4321/
Ref: http://whois.arin.net/rest/net/NET-38-112-0-0-1
OrgName: PSINet, Inc.
OrgId: PSI
Address: 2450 N Street NW
City: Washington
StateProv: DC
PostalCode: 20037
Country: US
RegDate:
Updated: 2015-06-04
Comment: rwhois.cogentco.com
Ref: http://whois.arin.net/rest/org/PSI
ReferralServer: rwhois://rwhois.cogentco.com:4321
OrgNOCHandle: ZC108-ARIN
OrgNOCName: Cogent Communications
OrgNOCPhone: +1-877-875-4311
OrgNOCEmail: n...@cogentco.com
OrgNOCRef: http://whois.arin.net/rest/poc/ZC108-ARIN
OrgAbuseHandle: COGEN-ARIN
OrgAbuseName: Cogent Abuse
OrgAbusePhone: +1-877-875-4311
OrgAbuseEmail: ab...@cogentco.com
OrgAbuseRef: http://whois.arin.net/rest/poc/COGEN-ARIN
OrgTechHandle: IPALL-ARIN
OrgTechName: IP Allocation
OrgTechPhone: +1-877-875-4311
OrgTechEmail: ipal...@cogentco.com
OrgTechRef: http://whois.arin.net/rest/poc/IPALL-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#
Found a referral to rwhois.cogentco.com:4321.
%rwhois V-1.5:0010b0:00 rwhois.cogentco.com
network:ID:NET4-2671BC0016
network:Network-Name:NET4-2671BC0016
network:IP-Network:38.113.188.0/22
network:Postal-Code:M5H 4E7
network:Country:CA
network:City:Toronto
network:Street-Address:157 Adelaide St W
network:Org-Name:Baraka Streaming Technologies Inc.
network:Tech-Contact:ZC108-ARIN
network:Updated:2015-06-19 18:43:09
%ok
