|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: Who does source address validation? (was Re: what's thatsmell?)
Sean Donelan <[email protected]> writes: > Whether this is still true, the legend lives on. A 20% throughput hit > won't be offset by a 12 to 18 percent bandwidth savings. Especially on > heavily loaded circuits. Some network engineers are reluctant to do any > type of packet filtering (uRPF or ACL based) because of the belief it will > hurt performance (latency, throughput, etc). Some network operators got burned by broken ACL implementations, too. -- Florian Weimer [email protected] University of Stuttgart http://CERT.Uni-Stuttgart.DE/people/fw/ RUS-CERT fax +49-711-685-5898
|