nanog mailing list archives
Re: What were we saying about edge filtering?
From: Iljitsch van Beijnum <iljitsch () muada com>
Date: Fri, 5 Sep 2003 10:28:44 +0200
On donderdag, sep 4, 2003, at 18:51 Europe/Amsterdam, Owen DeLong wrote:
Source address-based filtering in the backbone is expensive and, in manycases, non-feasible.
And, of course, unnecessary. Everything in the core must have gotten there over a border towards some external network or an edge towards a customer (counting own servers and stuff as "customer" too) so if filtering is done there, no need to repeat it in the core.
BTW, from what I can tell on a pretty old/slow Cisco box, uRPF makes packet forwarding take about 10% more CPU, which is the same as a short standard access list (which can only look at source addresses). A short extended access list takes around 20% more CPU.
Current thread:
- Re: What were we saying about edge filtering?, (continued)
- Re: What were we saying about edge filtering? Christopher L. Morrow (Sep 04)
- Re: What were we saying about edge filtering? Rob Thomas (Sep 04)
- Re: What were we saying about edge filtering? Sean Donelan (Sep 04)
- Re: What were we saying about edge filtering? Adam Debus (Sep 04)
- RE: What were we saying about edge filtering? Terry Baranski (Sep 06)
- Re: What were we saying about edge filtering? Petri Helenius (Sep 07)
- Re: What were we saying about edge filtering? Petri Helenius (Sep 04)
- Re: What were we saying about edge filtering? Jack Bates (Sep 04)
- Re: What were we saying about edge filtering? bdragon (Sep 08)
- Re: What were we saying about edge filtering? Owen DeLong (Sep 04)
- Re: What were we saying about edge filtering? Iljitsch van Beijnum (Sep 05)
- Re: What were we saying about edge filtering? Jack Bates (Sep 06)
- Re: What were we saying about edge filtering? Sean Donelan (Sep 06)
- Re: What were we saying about edge filtering? bdragon (Sep 08)
- Re: What were we saying about edge filtering? Sean Donelan (Sep 08)
- Re: What were we saying about edge filtering? bdragon (Sep 12)