nanog mailing list archives

Re: Best practice ACLs for a internet facing border router?

From: Robert Brockway <rbrockway () opentrend net>
Date: Mon, 13 Jun 2005 10:35:00 -0400 (EDT)


On Mon, 13 Jun 2005, Drew Weaver wrote:


      I'm just curious if anyone has ever published a list of what is
an agreed upon best practice list of ACLs for an internet facing border
router. I'm talking about things like bogons, private Ip addresses, et
cetera. If anyone is aware of anything like this I'd like to see it.


I suggest reviewing RFC3330.  The bogons needs to be kept up to date (some 
interesting discussions on SAGE-AU of organisations not doing that) but 
for a list of subnets reserved for different purposes RFC3330 is 
invaluable.

Rob

-- 
Robert Brockway B.Sc.
Senior Technical Consultant, OpenTrend Solutions Ltd.
Ph: +1-416-669-3073 Email: rbrockway () opentrend net http://www.opentrend.net
OpenTrend Solutions: Reliable, secure solutions to real world problems.
Contributing Member of Software in the Public Interest http://www.spi-inc.org

Current thread:

Best practice ACLs for a internet facing border router? Drew Weaver (Jun 13)
- Re: Best practice ACLs for a internet facing border router? Kim Onnel (Jun 13)
- Re: Best practice ACLs for a internet facing border router? Robert Brockway (Jun 13)
- Re: Best practice ACLs for a internet facing border router? matthew zeier (Jun 13)
- <Possible follow-ups>
- RE: Best practice ACLs for a internet facing border router? Frotzler, Florian (Jun 13)
  - Message not available
    - RE: Best practice ACLs for a internet facing border router? Daniel Senie (Jun 13)
- RE: Best practice ACLs for a internet facing border router? Barry Greene (bgreene) (Jun 13)