nanog mailing list archives

RE: ip options

From: "Dario Ciccarone (dciccaro)" <dciccaro () cisco com>
Date: Wed, 28 Oct 2009 15:17:03 -0400

Luca:

        Check
http://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/s
ec_acl_sel_drop_ps6350_TSD_Products_Configuration_Guide_Chapter.html#wp1
043334

        Not the whole story, but :)

        Hope it helps,
        Dario

-----Original Message-----
From: Luca Tosolini [mailto:bit.gossip () chello nl] 
Sent: Wednesday, October 28, 2009 3:06 PM
To: nanog
Subject: ip options

Experts,
out of the well-known values for ip options:

X@r4# set ip-options ? 
Possible completions:
  <range>              Range of values
  [                    Open a set of values
  any                  Any IP option
  loose-source-route   Loose source route
  route-record         Route record
  router-alert         Router alert
  security             Security
  stream-id            Stream ID
  strict-source-route  Strict source route
  timestamp            Timestamp

I can only think of:
- RSVP using router-alert
- ICMP using route-record, timestamp

But I can not think of any other use of any other IP option.
Considering the security hazard that they imply, I am 
therefore thinking
to drop them.

Is any other ip options used by: ospf, isis, bgp, ldp, igmp, pim, bfd?
Thanks,
Luca.

Current thread:

ip options Luca Tosolini (Oct 28)
- RE: ip options Dario Ciccarone (dciccaro) (Oct 28)
- Re: ip options Roland Dobbins (Oct 28)
  - PPPoE vs. Bridged ADSL JD (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Jack Bates (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Saxon Jones (Oct 28)
    - Re: PPPoE vs. Bridged ADSL David E. Smith (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Walter Keen (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Mark Smith (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Nathan Ward (Oct 28)
    - Re: PPPoE vs. Bridged ADSL Sean Donelan (Oct 29)
    - RE: PPPoE vs. Bridged ADSL Vince Mammoliti (Oct 29)

(Thread continues...)