North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
RE: Best practice ACLs for a internet facing border router?
At 10:16 AM 6/13/2005, Frotzler, Florian wrote:
For packet filtering, the above URL is not going to help, but a read of BCP38 would be in order.
Edge sites with no downstreams can very easily filter the source addresses leaving their network and ensure no bogus-sourced packets leave, be they RFC1918, or spoofs.
> -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Drew Weaver > Sent: Montag, 13. Juni 2005 16:28 > To: [email protected] > Subject: Best practice ACLs for a internet facing border router? > > > I'm just curious if anyone has ever published a list of > what is an agreed upon best practice list of ACLs for an > internet facing border router. I'm talking about things like > bogons, private Ip addresses, et cetera. If anyone is aware > of anything like this I'd like to see it. > > Thanks, > -Drew > >