nanog mailing list archives
Re: Best practice ACLs for a internet facing border router?
From: matthew zeier <mrz () velvet org>
Date: Mon, 13 Jun 2005 11:22:26 -0700
Drew Weaver wrote:
I'm just curious if anyone has ever published a list of what is an agreed upon best practice list of ACLs for an internet facing border router. I'm talking about things like bogons, private Ip addresses, et cetera. If anyone is aware of anything like this I'd like to see it.
Depending on your flavor of router, you might need to take multiple approaches.On my 12000s, I'm only using RACLs (beyond prefix filtering) and do more specific ACLs closer down to the "core".
-- matthew zeier - "Curiosity is a willing, a proud, an eager confession of ignorance." - Leonard Rubenstein
Current thread:
- Best practice ACLs for a internet facing border router? Drew Weaver (Jun 13)
- Re: Best practice ACLs for a internet facing border router? Kim Onnel (Jun 13)
- Re: Best practice ACLs for a internet facing border router? Robert Brockway (Jun 13)
- Re: Best practice ACLs for a internet facing border router? matthew zeier (Jun 13)
- <Possible follow-ups>
- RE: Best practice ACLs for a internet facing border router? Frotzler, Florian (Jun 13)
- Message not available
- RE: Best practice ACLs for a internet facing border router? Daniel Senie (Jun 13)
- Message not available
- RE: Best practice ACLs for a internet facing border router? Barry Greene (bgreene) (Jun 13)