nanog mailing list archives
Re: RFC1918 addresses to permit in for VPN?
From: Stephen Stuart <stuart () mfnx net>
Date: Sun, 31 Dec 2000 20:39:58 -0800
Implementation at the border with a peer is another matter. On cisco one would love to use ip verify unicast reverse path but that's not going to work because of asymmetric routes.
Have you looked at "ip verify unicast source reachable-via any"? YMMV traffic-wise, but technology-wise it's supposed to address the asymmetry issue. Stephen
Current thread:
- RE: RFC1918 addresses to permit in for VPN?, (continued)
- RE: RFC1918 addresses to permit in for VPN? Randy Bush (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Stephen Stuart (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? John Fraizer (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Bill Woodcock (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Randy Bush (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Mark Mentovai (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Randy Bush (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Andrew Brown (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? John Hawkinson (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Dana Hudes (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Stephen Stuart (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Andrew Brown (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Stephen Stuart (Dec 31)
- RE: RFC1918 addresses to permit in for VPN? Jason Lewis (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Stephen Stuart (Dec 31)
- RE: RFC1918 addresses to permit in for VPN? Bill Woodcock (Dec 31)
- Re: RFC1918 addresses to permit in for VPN? Adam Rothschild (Dec 30)
- Re: RFC1918 addresses to permit in for VPN? Steve Sobol (Dec 30)