nanog mailing list archives
Re: BGP TTL check in 12.3(7)T
From: David Meyer <dmm () 1-4-5 net>
Date: Thu, 8 Apr 2004 08:07:01 -0700
The TTL mechanism is just a way to distinguish at low cost between good for_us traffic and junk. So more of a classifer than a security layer, though it can be argued both ways. And even though it does have security in the title, it is _not_ a panacea for "securing" bgp or any routing information. http://www.faqs.org/rfcs/rfc3682.html
Just to second what Vijay said here, what GTSM does is
close the window a bit; it doesn't shut it.
Dave
Current thread:
- BGP TTL check in 12.3(7)T Hank Nussbacher (Apr 08)
- Re: BGP TTL check in 12.3(7)T Magnus Eriksson (Apr 08)
- Re: BGP TTL check in 12.3(7)T vijay gill (Apr 08)
- RE: BGP TTL check in 12.3(7)T Blaine Christian (Apr 08)
- RE: BGP TTL check in 12.3(7)T Pekka Savola (Apr 08)
- RE: BGP TTL check in 12.3(7)T Blaine Christian (Apr 08)
- RE: BGP TTL check in 12.3(7)T Blaine Christian (Apr 08)
- Re: BGP TTL check in 12.3(7)T David Meyer (Apr 08)
- Re: BGP TTL check in 12.3(7)T Iljitsch van Beijnum (Apr 08)
- RE: BGP TTL check in 12.3(7)T Blaine Christian (Apr 08)
- Re: BGP TTL check in 12.3(7)T Iljitsch van Beijnum (Apr 08)
- Re: BGP TTL check in 12.3(7)T Pekka Savola (Apr 08)
- RE: BGP TTL check in 12.3(7)T Tony Li (Apr 08)
- RE: BGP TTL check in 12.3(7)T Blaine Christian (Apr 08)
- <Possible follow-ups>
- RE: BGP TTL check in 12.3(7)T Michel Py (Apr 08)