nanog mailing list archives
Re: 69/8...this sucks -- Centralizing filtering..
From: "Jack Bates" <jbates () brightok net>
Date: Mon, 10 Mar 2003 13:39:26 -0600
From: "McBurnett, Jim"
No seriously.. What if that customer has a VPN design with a dial backup behind their
firewall.
Using BGP to suck down a default route from the provider, when that default route goes away, then the internal router initiates the
dial
backup solution to the remote network. They should not be sending out any BGP routes though.. But.. See example above...
<snip other method>
Sure this is somewhat unusual, but I have seen it, and corrected it...
Oh, I agree that there are times when BGP is used in a single uplink scenario, but it is not common. However, someone pointed me to ip verify unicast source reachable-via any which seems to be available on some of the cisco Service provider releases. It's an interesting concept and I'm itching to play with it. If you aren't in my routing table, then why accept the IP address? -Jack
Current thread:
- Re: 69/8...this sucks -- Centralizing filtering.., (continued)
- Re: 69/8...this sucks -- Centralizing filtering.. Jack Bates (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Mark Segal (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Mark Segal (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Haesu (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Michael . Dillon (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Rob Thomas (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. James-lists (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Rob Thomas (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Michael . Dillon (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. Michael . Dillon (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. McBurnett, Jim (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. Jack Bates (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. Russell Heilling (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. Jack Bates (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. McBurnett, Jim (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Michael Whisenant (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. jlewis (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Michael Whisenant (Mar 11)
- Re: 69/8...this sucks -- Centralizing filtering.. Chris Adams (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. jlewis (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Todd A. Blank (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Simon Lyall (Mar 10)
- Re: 69/8...this sucks -- Centralizing filtering.. Jack Bates (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. jlewis (Mar 10)
- RE: 69/8...this sucks -- Centralizing filtering.. Simon Lyall (Mar 10)
(Thread continues...)