nanog mailing list archives

Re: Managing ACL exceptions (was Re: Filter NTP traffic by packet size?)

From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Sat, 1 Mar 2014 02:41:39 +0000


On Mar 1, 2014, at 9:14 AM, Keegan Holley <no.spam () comcast net> wrote:

+1 in my experience uRPF get’s enabled, breaks something or causes confusion (usually related to multi-homing) and 
then get’s disabled.


Enabling loose-check - even with allow-default - is useful solely for S/RTBH, if nothing else.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

          Luck is the residue of opportunity and design.

                       -- John Milton

Current thread:

Re: Managing ACL exceptions (was Re: Filter NTP traffic by packet size?) Keegan Holley (Feb 28)
- Re: Managing ACL exceptions (was Re: Filter NTP traffic by packet size?) Dobbins, Roland (Feb 28)