in it he suggested that you block addresses called "bogians" on your external interface and suggested this document. http://www.iana.org/assignments/ipv4-address-space i used notepad to extract all block ranges that were IANA reserved and got this list
is that document telling me that since they are reserved they are not in use on the internet and therefore i should never see ips originating from these netoworks and to block them from coming into my network?
Your list looks fairly accurate in terms of IANA reserved networks. You can block these, but run the small risk of some these networks being released on the Internet. You would have to adjust your list accordingly, but as of right now, if you are not using things like multicast, then you are safe in blocking them. Also, don't forget the biggest "bogians" of them all. I am referring to the RFC1918 ranges of 10.x.x.x /8 172.16.x.x/12 and 192.168.x.x/16. A large majority of spoofed IP packets originate from these ranges.
Keep in mind that by filtering unused address space, you're implicity accepting the responsibility of keeping these filters up to date. See http://puck.nether.net/~jared/papers/69-paper.html for an example of what happens when filters aren't updated upon new IANA IP allocations.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...