Internet access discussion, including Fusion, IP Broadband, and Gigabit Fiber!
by sonicuser » Tue Jun 12, 2018 2:22 pm
I have a site to site vpn running across two sonic endpoints (unfortunately with dynamic ip due to fiber) and while it's configured securely, I wanted to further lock it down by restricting traffic at the firewall level by dropping traffic that doesn't originate from a sonic ip address.
Is the list here enough or would I be missing anything?:
https://bgp.he.net/AS7065#_prefixes
by
dane » Tue Jun 12, 2018 2:27 pm
That's everything from our ASN, so that should be all the potential live IPs we have today. But you could probably limit to the subnet each end-point is in today, and be even more secure, then update if/when that subnet changes.
-
-
dane
- Posts: 5076
- Joined: Tue May 10, 2011 5:40 pm
- Website: http://corp.sonic.net/ceo/
- Location: Santa Rosa, CA
Who is online
In total there are 48 users online :: 3 registered, 0 hidden and 45 guests (based on users active over the past 5 minutes)
Most users ever online was 999 on Mon May 10, 2021 1:02 am
Users browsing this forum: Ahrefs [Bot], Google [Bot], Semrush [Bot] and 45 guests