Re: no ip forged-source-address

From: Jesper Skriver (no email)
Date: Wed Oct 30 2002 - 11:17:52 EST

Next message: (no email): "Re: no ip forged-source-address"
Previous message: Daniel Senie: "Re: no ip forged-source-address"
Maybe in reply to: (no name): "no ip forged-source-address"
Next in thread: (no email): "Re: no ip forged-source-address"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Wed, Oct 30, 2002 at 03:44:12PM +0000, wrote:

> Therefore, would it be a reasonable suggestion to ask router vendors to
> source address filtering in as an option[1] on the interface and then move
> it to being the default setting[2] after a period of time?

Cannot be done, I certainly doesn't want RPF check to be default enabled
on all interfaces on my routers, think for a second about asymmetric
routing WITHIN the ISP network.

/Jesper

-- 
Jesper Skriver, jesper(at)skriver(dot)dk  -  CCIE #5456
Senior network engineer @ AS3292, TDC Tele Danmark
One Unix to rule them all, One Resolver to find them,
One IP to bring them all and in the zone to bind them.

Next message: (no email): "Re: no ip forged-source-address"
Previous message: Daniel Senie: "Re: no ip forged-source-address"
Maybe in reply to: (no name): "no ip forged-source-address"
Next in thread: (no email): "Re: no ip forged-source-address"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Invaluement Anti-Spam DNSBLs