North American Network Operators Group
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Historical
Re: TCP/BGP vulnerability - easier than you think
- From: Aditya
- Date: Wed Apr 21 12:52:42 2004
- Cancel-lock: sha1:p4eRmSbMcR1E/e//mitDIDz7R8w=
> On Wed, 21 Apr 2004 07:35:27 -0700, "Michel Py" <michel@arneill-py.sacramento.ca.us> said:
> Insist that the peer uses "ip verify unicast reverse-path" on all
> interfaces, or similar command for other vendors.
I sure hope there are no asymmetric paths on the Internet that will
bite you when you turn on strict RPF on your peering interfaces
</sarcasm>
Seriously, if you do turn RPF on on peering interfaces, please let
your peers know (plea from circa 1999)
Aditya
|
