North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: icmp rpf
- From: virendra rode //
- Date: Sun Sep 24 19:28:34 2006
-----BEGIN PGP SIGNED MESSAGE-----
Mark Kent wrote:
> A smaller North American network provider, with a modest North
> American backbone, numbers their internal routers on public IP space
> that they do not announce to the world.
> One of the largest North American network providers filters/drops
> ICMP messages so that they only pass those with a source IP
> address that appears in their routing table.
> As a result, traceroutes from big.net into small.net have numerous
> hops that time out.
> Traceroutes from elsewhere that go into small.net but return on
> big.net also have numerous hops that time out.
> We do all still think that traceroute is important, don't we?
> If so, which of these two nets is unreasonable in their actions/policies?
> Please note that we're not talking about RFC1918 space, or reserved IP
> space of any kind. Also, think about the scenario where some failure
> happens leaving big.net with an incomplete routing table, thus breaking
> traceroute when it is perhaps most needed.
This is yet another reason one shouldn't rely on pings & traceroutes to
perform reachability analysis.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v220.127.116.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----