|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical Re: TCP/BGP vulnerability - easier than you think
> On Wed, 21 Apr 2004 07:35:27 -0700, "Michel Py" <[email protected]> said: > Insist that the peer uses "ip verify unicast reverse-path" on all > interfaces, or similar command for other vendors. I sure hope there are no asymmetric paths on the Internet that will bite you when you turn on strict RPF on your peering interfaces </sarcasm> Seriously, if you do turn RPF on on peering interfaces, please let your peers know (plea from circa 1999) Aditya
|