nanog mailing list archives
Re: Customer-facing ACLs
From: Justin Shore <justin () justinshore com>
Date: Fri, 07 Mar 2008 14:19:47 -0600
Valdis.Kletnieks () vt edu wrote:
On Fri, 07 Mar 2008 13:55:05 CST, Justin Shore said:I'm assuming everyone uses uRPF at all their edges already so that eliminates the need for specific ACEs with ingress/egress network verification checks.You're new here, aren't you? :)
Hopefully optimistic. Don't bum me out going into a weekend... :-)From the looks of my ingress BOGON ACLs on my borders (yes, I'm using ACLs and not null routes for a reason) I'd most people not reading NANOG (and maybe even some of them!) are not doing any ingress filtering on their customer source IPs. Sad....
Justin
Current thread:
- Customer-facing ACLs Justin Shore (Mar 07)
- Re: Customer-facing ACLs Justin M. Streiner (Mar 07)
- Re: Customer-facing ACLs Kameron Gasso (Mar 07)
- RE: Customer-facing ACLs Frank Bulk (Mar 07)
- Re: Customer-facing ACLs Kameron Gasso (Mar 07)
- Re: Customer-facing ACLs Valdis . Kletnieks (Mar 07)
- Re: Customer-facing ACLs Justin Shore (Mar 07)
- RE: Customer-facing ACLs Tim Sanderson (Mar 07)
- Re: Customer-facing ACLs Dan Armstrong (Mar 07)
- Re: Customer-facing ACLs Justin Shore (Mar 07)
- Re: Customer-facing ACLs Robert Beverly (Mar 07)
- Re: Customer-facing ACLs Danny McPherson (Mar 07)
- Re: Customer-facing ACLs Mark Tinka (Mar 08)
- Re: Customer-facing ACLs Adrian Chadd (Mar 10)
- Re: Customer-facing ACLs Jo Rhett (Mar 10)
- Re: Customer-facing ACLs Christopher Morrow (Mar 11)
- <Possible follow-ups>
- Re: Customer-facing ACLs Scott Weeks (Mar 07)
- Re: Customer-facing ACLs Justin Shore (Mar 07)
(Thread continues...)
- Re: Customer-facing ACLs Justin M. Streiner (Mar 07)