[Networking] Is 10.0.0.0/8 not blackholed?

What the heck is going on? I'm trying to troubleshoot my OpenVPN settings. I have my server set as 10.10.10.1 and the tunnel IPs elsewhere in the 10.10.10.0/24 subnet. Even when the tunnel is down, I was getting ICMP replies from 10.10.10.1. That's very bizarre.... so I'm checking my LAN, and, well, nothing is up with 10.10.10.1 on my LAN. So FiOS is clearly routing the packets. The ping replies are coming from off my LAN ...... It's not in my arp table, it's tracerouteable, it's pingable... why the heck can I get there from here? I'll readdress my openvpn config - not a big deal - but that's bothering me. 192.168.0.0/16, 172.16.0.0/12, and 10.0.0.0/8 should be blackholed on the FiOS network yet it isn't. Furthermore, the Actiontec should have a default rule to drop any packets from those source networks on the WAN port - those should be invalid. Is anyone else seeing this behavior? I'll have to add some rules to the Actiontec to drop the packets, but can anyone else verify they're seeing this as well? If I can get someone else to verify they can get to 10.10.10.1, I'll make some phone calls. dmurphy@macbookpro: ping -c 2 10.10.10.1 PING 10.10.10.1 (10.10.10.1): 56 data bytes 64 bytes from 10.10.10.1: icmp_seq=0 ttl=251 time=13.430 ms 64 bytes from 10.10.10.1: icmp_seq=1 ttl=251 time=12.207 ms --- 10.10.10.1 ping statistics --- 2 packets transmitted, 2 packets received, 0.0% packet loss round-trip min/avg/max/stddev = 12.207/12.819/13.430/0.612 ms dmurphy@macbookpro: traceroute 10.10.10.1 traceroute to 10.10.10.1 (10.10.10.1), 64 hops max, 52 byte packets 1 dmurphy-router.home (172.16.0.1) 3.973 ms 3.719 ms 1.030 ms 2 l100.nwrknj-vfttp-101.verizon-gni.net (98.109.156.1) 5.406 ms 4.884 ms 4.879 ms 3 g0-9-2-6.nwrknj-lcr-22.verizon-gni.net (130.81.110.100) 7.306 ms 7.314 ms 7.623 ms 4 ae2-0.nwrk-bb-rtr2.verizon-gni.net (130.81.209.170) 7.378 ms ae4-0.nwrk-bb-rtr2.verizon-gni.net (130.81.199.194) 9.298 ms ae0-0.nwrk-bb-rtr2.verizon-gni.net (130.81.209.162) 6.822 ms 5 * 3.et-2-0-1.tl2.nyc1.alter.net (140.222.227.34) 11.670 ms 6.838 ms 6 gigabitethernet7-0.gw9.nyc4.alter.net (152.63.21.194) 12.561 ms * 14.750 ms dmurphy@macbookpro: arp -a|grep 10. dmurphy@macbookpro: