Session Report
Summary:
Test run at: 2017-11-17 11:12:03 GMT
Client Prefix (v4): 173.208.186.x/24
Client AS (v4): 32097 (WII)
IPv4 Probes: 105
| Outbound spoofing summary (from the client to our server) |
|---|
| Source address type |
IPv4 |
|---|
| Private -
RFC1918 |
received |
| Routable |
received |
| Largest spoofable neighbor prefix length |
/18 |
| Spoof status key |
|---|
| received | Spoofed packet was received. | ✔ | Pattern of tests from this IP block indicates a switch from allowing spoofing to blocking it. |
| rewritten | Spoofed packet was received, but the source address was changed en route. |
| blocked | Spoofed packet was not received, but unspoofed packet was. |
| unknown | Neither spoofed nor unspoofed packet was received. |
IPv4 Adjacent Netblock Testing:
Your host (173.208.186.x/24) can spoof 16383 neighboring addresses (within your /18 prefix)
| Spoofed source address (anon) | Prefix
Length | ASN of spoofed
source address | Received |
|---|
| 173.208.186.x/24 | /31 | 32097 | yes |
| 173.208.186.x/24 | /30 | 32097 | yes |
| 173.208.186.x/24 | /29 | 32097 | yes |
| 173.208.186.x/24 | /28 | 32097 | no |
| 173.208.186.x/24 | /27 | 32097 | yes |
| 173.208.186.x/24 | /26 | 32097 | yes |
| 173.208.186.x/24 | /25 | 32097 | yes |
| 173.208.186.x/24 | /24 | 32097 | yes |
| 173.208.187.x/24 | /23 | 32097 | yes |
| 173.208.184.x/24 | /22 | 32097 | yes |
| 173.208.190.x/24 | /21 | 32097 | yes |
| 173.208.178.x/24 | /20 | 32097 | no |
| 173.208.170.x/24 | /19 | 33387 | yes |
| 173.208.154.x/24 | /18 | 32097 | yes |
| 173.208.250.x/24 | /17 | 32097 | no |
| 173.208.58.x/24 | /16 | 15003 | no |
| 173.209.186.x/24 | /15 | 18624 | no |
| 173.210.186.x/24 | /14 | 22995 | no |
| 173.212.186.x/24 | /13 | 20161 | no |
| 173.216.186.x/24 | /12 | 19108 | no |
| 173.192.186.x/24 | /11 | 36351 | no |
| 173.240.186.x/24 | /10 | 15102 | no |
| 173.144.186.x/24 | /9 | 3651 | no |
| 173.80.186.x/24 | /8 | 19108 | no |
Meaning of status in Received column:
| no | Packets spoofed from adjacent netblock were not received, probably due to blocking |
| yes | Packets spoofed from adjacent netblock were received |
| yes | Packets spoofed from adjacent netblock were received (but that netblock is within the source AS) |
IPv4 Outbound Filtering Depth:
The tracefilter test found your host
able to spoof routable, non-adjacent source addresses through the
first 3 IP hop(s).
Summary:
The results from all tests are aggregated to produce a summary
"State of IP Spoofing" report.
Feedback:
We welcome questions and feedback to the Spoofer Information Mailing List
and invite users to join the Spoofer
Users Mailing List for discussion and announcements.
