Re: [m0n0wall] Re: Confirmed: bug in firewall on OPT1

From:	Chris Buechler <cbuechler at gmail dot com>
To:	m0n0wall at lists dot m0n0 dot ch
Subject:	Re: [m0n0wall] Re: Confirmed: bug in firewall on OPT1
Date:	Sat, 18 Dec 2004 11:50:03 -0500

On Sat, 18 Dec 2004 17:40:40 +0100, Michael Scheer <listen at autechre dot de> wrote:
> 
> Hmmm. I've had a closer look and AFAIR 169.254/16 is used for internal
> client communication. -v, why do you block it @ wan interface? Tia.
> 

Yeah, it's used for automatic IP assignment when DHCP isn't available
on MS and maybe other OS'es.

That should really be blocked as a part of the "block private
networks" checkbox.

He's just dropping it because it should never be seen on the internet,
and it's best practice to do so.

-Chris