Re: Cisco uRPF failures

• From: Jo Rhett
• Date: Thu Sep 11 13:27:12 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

On (2008-09-11 00:50 -0700), Jo Rhett wrote:

As someone who does a lot of work talking to NOCs trying to chase down
attack sources, I can honestly tell you that I haven't talked to a
single NOC in the last 16 months who had BCP38 on every port, or even on
most of their ports. And the majority response is "our (vendor) gear
can't handle it". As we both know, Cisco is the largest by far vendor
in the marketplace, and I've heard that name more than 70% of the time.

Sound like these shops are using 3550 as router, which is common for
smaller shops, especially in EU. And indeed, 3550 would not do uRPF.
(3560E does).

• References:
  • Re: Force10 Gear - Opinions Jo Rhett
  • RE: Force10 Gear - Opinions James Jun
  • Re: Force10 Gear - Opinions Jo Rhett
  • Re: Force10 Gear - Opinions Rubens Kuhl Jr.
  • Cisco uRPF failures Jo Rhett
  • Re: Cisco uRPF failures Saku Ytti
  • Re: Cisco uRPF failures Jo Rhett
  • Re: Cisco uRPF failures Saku Ytti

• Prev by Date: Re: an effect of ignoring BCP38
• Next by Date: Re: an effect of ignoring BCP38
• Date Index
• Thread Index
• Author Index
• Historical