nanog mailing list archives
Re: Where is the edge of the Internet? Re: no ip forged-source-address
From: Valdis.Kletnieks () vt edu
Date: Thu, 07 Nov 2002 14:53:43 -0500
On Fri, 08 Nov 2002 01:01:33 +0530, alok said:
there was a comment from chris saying..."never possible to knw what networks an bgp customer uplinks via you" which is very true.. ..so i assume u mean non-bgp customers? loose or strict, rpf will not work for aasymterically connected bgp neighbouring AS....
If loose rpf doesn't work, you're about to start dropping packets *anyhow*. Unless, of course, you *INTENDED* to have a topology where you're accepting traffic from another AS and forwarding it, and you don't have a return path yourself, but the destination *does* have an assymetric path. Oh.. and you have to consider it acceptable that if any OTHER customer, connected to that part of your AS that doesn't have a route, tries to contact the source, that they can't get there. Sounds like you're trying to either shoot yourself in the foot, or design a new too-clever-by-half way of building a VPN. -- Valdis Kletnieks Computer Systems Senior Engineer Virginia Tech
Attachment:
_bin
Description:
Current thread:
- Re: Where is the edge of the Internet? Re: no ip forged-source-address bdragon (Nov 07)
- <Possible follow-ups>
- Re: Where is the edge of the Internet? Re: no ip forged-source-address alok (Nov 07)
- Re: Where is the edge of the Internet? Re: no ip forged-source-address Majdi S. Abbas (Nov 07)
- Re: Where is the edge of the Internet? Re: no ip forged-source-address Valdis . Kletnieks (Nov 07)
- Re: Where is the edge of the Internet? Re: no ip forged-source-address alok (Nov 07)
- Re: Where is the edge of the Internet? Re: no ip forged-source-address Valdis . Kletnieks (Nov 07)