Session Report
Summary:
Test run at: 2017-05-24 14:12:03 GMT
Client Prefix (v4): 193.173.216.x/24
Client AS (v4): 1136 (KPN)
IPv4 Probes: 131
| Outbound spoofing summary (from the client to our server) |
|---|
| Source address type |
IPv4 |
|---|
| Private -
RFC1918 |
blocked |
| Routable |
blocked |
| Largest spoofable neighbor prefix length |
none |
| Spoof status key |
|---|
| received | Spoofed packet was received. | ✔ | Pattern of tests from this IP block indicates a switch from allowing spoofing to blocking it. |
| rewritten | Spoofed packet was received, but the source address was changed en route. |
| blocked | Spoofed packet was not received, but unspoofed packet was. |
| unknown | Neither spoofed nor unspoofed packet was received. |
IPv4 Adjacent Netblock Testing:
Your host (193.173.216.x/24) can spoof 0 neighboring addresses
| Spoofed source address (anon) | Prefix
Length | ASN of spoofed
source address | Received |
|---|
| 193.173.216.x/24 | /31 | 1136 | natblock |
| 193.173.216.x/24 | /30 | 1136 | natblock |
| 193.173.216.x/24 | /29 | 1136 | natblock |
| 193.173.216.x/24 | /28 | 1136 | natblock |
| 193.173.216.x/24 | /27 | 1136 | natblock |
| 193.173.216.x/24 | /26 | 1136 | natblock |
| 193.173.216.x/24 | /25 | 1136 | natblock |
| 193.173.216.x/24 | /24 | 1136 | natblock |
| 193.173.217.x/24 | /23 | 1136 | natblock |
| 193.173.218.x/24 | /22 | 1136 | natblock |
| 193.173.220.x/24 | /21 | 1136 | natblock |
| 193.173.208.x/24 | /20 | 1136 | natblock |
| 193.173.200.x/24 | /19 | 1136 | natblock |
| 193.173.248.x/24 | /18 | 1136 | natblock |
| 193.173.152.x/24 | /17 | 1136 | sendto |
| 193.173.88.x/24 | /16 | 1136 | natblock |
| 193.172.216.x/24 | /15 | 1136 | natblock |
| 193.175.216.x/24 | /14 | 680 | natblock |
| 193.169.216.x/24 | /13 | 59816 | natblock |
| 193.165.216.x/24 | /12 | 30764 | natblock |
| 193.189.216.x/24 | /11 | 8928 | natblock |
| 193.141.216.x/24 | /10 | 5400 | natblock |
| 193.237.216.x/24 | /9 | 2529 | natblock |
| 193.45.216.x/24 | /8 | 3301 | natblock |
Meaning of status in Received column:
| natblock | Spoofed probe packets appear to be blocked by your local NAT or firewall rather than being rewritten with a public source address. |
| sendto | The spoofer client was unable to send spoofed headers due to an operating system restriction. |
IPv4 Outbound Filtering Depth:
The tracefilter test found your host
unable to spoof routable, non-adjacent source addresses through
even the first IP hop.
Summary:
The results from all tests are aggregated to produce a summary
"State of IP Spoofing" report.
Feedback:
We welcome questions and feedback to the Spoofer Information Mailing List
and invite users to join the Spoofer
Users Mailing List for discussion and announcements.
