On 8/10/11 10:35 AM, Adam Moffett wrote:
AFAIK, 169.254/16 is the autoconfiguration range for private networks
that don't have a DHCP server.
That said, I have seen people use it for other internal purposes and
it isn't usually an issue.
I am moving more to assume ms are idiots. this seems to be the default
config for exchange clusters.
So, we open a bugzilla and put 169.254* addresses into 'local_networks'
by default? like rfc1918?
it the example, sa sees the internal (trusted) 172* ip, and sees 'first
untrusted' (the 169* address!)
spf fails, rbls are consulted. all could be avoided if ms actually
followed RFC's
<http://technet.microsoft.com/en-us/magazine/gg314976.aspx>
--
Michael Scheidell, CTO
o: 561-999-5000
d: 561-948-2259
>*| *SECNAP Network Security Corporation
* Best Mobile Solutions Product of 2011
* Best Intrusion Prevention Product
* Hot Company Finalist 2011
* Best Email Security Product
* Certified SNORT Integrator
______________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(r).
For Information please see http://www.secnap.com/products/spammertrap/
______________________________________________________________________