North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: key change for TCP-MD5
On Jun 23, 2006, at 7:17 PM, Iljitsch van Beijnum wrote:
Why is this better than using the TTL hack? Which is easier to configure, and at least as secure.On 24-jun-2006, at 0:43, Owen DeLong wrote:Why couldn't the network device do an AH check in hardware before passingIf you care that much, why don't you just add an extra loopback address, give it an RFC 1918 address, have your peer talk BGP towards that address and filter all packets towards the actual interface address of the router?