How to Easily Memorize RFC3330

RFC3330 is the list of bogons, or ip addresses that we should not see as the source addresses coming into our networks.  Furthermore it is named in the CCIE Security Blueprint and therefore a topic that we must be familiar with.  I would certainly read through all of the RFC’s mentioned in the blueprint for some general familiarity.  When it comes to RFC3330 the address ranges cannot be found in the online DocCD therefore, it seems that there is some daunting memorization that is necessary.  However, there is really not that much to memorize.  The problem is the order in which the address ranges are listed is numeric order instead of grouping them in a logical way that is easy to memorize.  Let’s simplify this a bit.

The original list is listed immediately below.  It is only listed here for completeness, the simplified view located on down in the document.

   Address Block             Present Use                       Reference
———————————————————————            “This” Network                 [RFC1700, page 4]           Private-Use Networks                   [RFC1918]           Public-Data Networks         [RFC1700, page 181]           Cable Television Networks                    —           Reserved but subject
to allocation                       [RFC1797]          Loopback                       [RFC1700, page 5]         Reserved but subject
to allocation                             —       Link Local                                   —        Private-Use Networks                   [RFC1918]       Reserved but subject
to allocation                             —         Reserved but subject
to allocation                             —         Test-Net       6to4 Relay Anycast                     [RFC3068]       Private-Use Networks                   [RFC1918]        Network Interconnect
Device Benchmark Testing            [RFC2544]     Reserved but subject
to allocation                             —          Multicast                              [RFC3171]          Reserved for Future Use        [RFC1700, page 4]

Now that list is just way too much to memorize, especially when you have a lot of other things going on with Lab day.  To simplify this, we need to regroup the addresses.

First of all as CCIE Security candidates, we all know the RFC1918 addresses-

The Autonet IP addresses are also very common and easy to remember-

We also know that Class D and Class E should not be the source of any incoming traffic-

The next thing to do is to list the first and last subnet of the Class A, Class B and Class C ranges- (also happens to be the loopback range)

So what does that leave to memorization? — Public Data Networks — Cable Television — Reserved — Test-Net — 6to4 Relay — Benchmark

Now I will not say that this is a completely trivial task, but it is necessary.  I would recommend understanding instead of memorizing the addresses with the exception of the last six ranges.  Those last six ranges are pretty easy to memorize.  The first two flow into my mind very easily, and its easy to add on the third.  The only one I struggle with is  Maybe you look at them last thing before you leave your hotel and write them down on the paper as soon as you complete your OEQ’s.  If you are lucky enough to get a “configure RFC3330 on interface x”, it could be some easy and quick points.  For me this is much easier than memorizing the whole list as laid out in the RFC

About Paul Stewart, CCIE 26009 (Security)

Paul is a Network and Security Engineer, Trainer and Blogger who enjoys understanding how things really work. With over 15 years of experience in the technology industry, Paul has helped many organizations build, maintain and secure their networks and systems.
This entry was posted in Career. Bookmark the permalink.