Re: no ip forged-source-address

From: Jesper Skriver (no email)
Date: Wed Oct 30 2002 - 11:17:52 EST


On Wed, Oct 30, 2002 at 03:44:12PM +0000, wrote:

> Therefore, would it be a reasonable suggestion to ask router vendors to
> source address filtering in as an option[1] on the interface and then move
> it to being the default setting[2] after a period of time?

Cannot be done, I certainly doesn't want RPF check to be default enabled
on all interfaces on my routers, think for a second about asymmetric
routing WITHIN the ISP network.

/Jesper

-- 
Jesper Skriver, jesper(at)skriver(dot)dk  -  CCIE #5456
Senior network engineer @ AS3292, TDC Tele Danmark
One Unix to rule them all, One Resolver to find them,
One IP to bring them all and in the zone to bind them.







Hosted Email Solutions

Invaluement Anti-Spam DNSBLs



Powered By FreeBSD   Powered By FreeBSD