Session Report
Summary:
Test run at: 2024-02-09 12:30:48 GMT
Client Prefix (v4): 60.32.13.x/24
Client AS (v4): 4713 (OCN)
IPv4 Probes: 66
Client Prefix (v6): 2400:4114:4xx::/40
Client AS (v6): 4713 (OCN)
Outbound spoofing summary (from the client to our server) |
Source address type |
IPv4 |
Private -
RFC1918 |
blocked |
Routable |
blocked |
Largest spoofable neighbor prefix length |
/29 |
Spoof status key |
---|
received | Spoofed packet was received. | ✔ | Pattern of tests from this IP block indicates a switch from allowing spoofing to blocking it. |
rewritten | Spoofed packet was received, but the source address was changed en route. |
blocked | Spoofed packet was not received, but unspoofed packet was. |
unknown | Neither spoofed nor unspoofed packet was received. |
IPv4 Adjacent Netblock Testing:
Your host (60.32.13.x/24) can spoof 7 neighboring addresses (within your /29 prefix)
Spoofed source address (anon) | Prefix Length | ASN of spoofed source address | Received |
60.32.13.x/24 | /31 | 4713 | yes |
60.32.13.x/24 | /30 | 4713 | yes |
60.32.13.x/24 | /29 | 4713 | yes |
60.32.13.x/24 | /28 | 4713 | natblock |
60.32.13.x/24 | /27 | 4713 | natblock |
60.32.13.x/24 | /26 | 4713 | natblock |
60.32.13.x/24 | /25 | 4713 | natblock |
60.32.13.x/24 | /24 | 4713 | natblock |
60.32.12.x/24 | /23 | 4713 | natblock |
60.32.15.x/24 | /22 | 4713 | natblock |
60.32.9.x/24 | /21 | 4713 | natblock |
60.32.5.x/24 | /20 | 4713 | natblock |
60.32.29.x/24 | /19 | 4713 | natblock |
60.32.45.x/24 | /18 | 4713 | natblock |
60.32.77.x/24 | /17 | 4713 | natblock |
60.32.141.x/24 | /16 | 4713 | natblock |
60.33.13.x/24 | /15 | 4713 | natblock |
60.34.13.x/24 | /14 | 4713 | natblock |
60.36.13.x/24 | /13 | 4713 | natblock |
60.40.13.x/24 | /12 | 4713 | natblock |
60.48.13.x/24 | /11 | 4788 | natblock |
60.0.13.x/24 | /10 | 4837 | natblock |
60.96.13.x/24 | /9 | 17676 | natblock |
60.160.13.x/24 | /8 | 4134 | natblock |
Meaning of status in Received column:
yes | Packets spoofed from adjacent netblock were received (but that netblock is within the source AS) |
natblock | Spoofed probe packets appear to be blocked by your local NAT or firewall rather than being rewritten with a public source address. |
IPv4 Outbound Filtering Depth:
The tracefilter test found your host
able to spoof routable, non-adjacent source addresses through the
first 2 IP hop(s).
Summary:
The results from all tests are aggregated to produce a summary
"State of IP Spoofing" report.
Feedback:
We welcome questions and feedback to the Spoofer Information Mailing List
and invite users to join the Spoofer
Users Mailing List for discussion and announcements.