nanog mailing list archives
Re: Bogon filtering (don't ban me)
From: Hank Nussbacher <hank () mail iucc ac il>
Date: Fri, 3 Dec 2004 09:23:01 +0200 (IST)
In Ciscoland its called Autosecure (IOS 12.3): http://www.cisco.com/warp/public/cc/pd/iosw/prodlit/cas11_ds.htm "Blocks all IANA reserved IP address blocks" The actual doc: <http://niatec.info/mediacontent/cisco/media/targets/resources_mod07/7_1_2_AutoSecure.pdf> Problem is, I still do not see that Cisco has a way of auto-updating a router that has used autosec_complete_bogon or autosec_iana_reserved_block. -Hank
We've proposed what vendors need to better support bogon filtering, even wrote a draft: http://arneill-py.sacramento.ca.us/draft-py-idr-redisfilter-01.txt but last time I talked to cisco ios person (which was just two weeks ago at IPv6 Summit), it still has not been done. Perhaps couple more people who buy their hardware asking them about it will make a difference ...
Current thread:
- Bogon filtering (don't ban me) J. Oquendo (Dec 02)
- Re: Bogon filtering (don't ban me) william(at)elan.net (Dec 02)
- Re: Bogon filtering (don't ban me) Hank Nussbacher (Dec 02)
- Re: Bogon filtering (don't ban me) Jeroen Massar (Dec 03)
- Re: Bogon filtering (don't ban me) Jon Lewis (Dec 03)
- Re: Bogon filtering (don't ban me either) Jerry Pasker (Dec 03)
- Re: Bogon filtering (don't ban me) Hank Nussbacher (Dec 02)
- Re: Bogon filtering (don't ban me) william(at)elan.net (Dec 02)
- Re: Bogon filtering (don't ban me) Christopher L. Morrow (Dec 02)
- Re: Bogon filtering Jeroen Massar (Dec 03)
- Re: Bogon filtering Michael . Dillon (Dec 03)
- Re: Bogon filtering Rob Thomas (Dec 03)
- Re: Bogon filtering Patrick W Gilmore (Dec 03)
- Re: Bogon filtering Michael . Dillon (Dec 03)
- <Possible follow-ups>
- RE: Bogon filtering (don't ban me) Mark Segal (Dec 03)