nanog mailing list archives

Re: BCP38 (was: Re: Why won't providers source-filter attacks? Simple.)

From: "Dobbins, Roland" <rdobbins () arbor net>
Date: Fri, 7 Feb 2014 21:07:17 +0000


On Feb 8, 2014, at 3:37 AM, John Curran <jcurran () arin net> wrote:

It's also true that if a sizable group of network operators were to actually deploy source address validation (thus 
proving that it really is a reasonable approach and doesn't carry too much operational or vendor implications), then 
it would be quite reasonable for those operators to bring the results to NANOG and get it recognized as a best 
current operating practice for networks of similar design/purpose.


Many already do - including operators of very large networks.  There are operational, vendor, and topological 
considerations which mean that it's achieved utilizing various mechanisms in different scenarios.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

          Luck is the residue of opportunity and design.

                       -- John Milton

Current thread:

Why won't providers source-filter attacks? Simple., (continued)
- - - Why won't providers source-filter attacks? Simple. Jay Ashworth (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Octavio Alvarez (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Mark Andrews (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Peter Kristolaitis (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Mark Andrews (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Valdis . Kletnieks (Feb 04)
    - Re: Why won't providers source-filter attacks? Simple. Jimmy Hess (Feb 04)
    - BCP38 (was: Re: Why won't providers source-filter attacks? Simple.) John Curran (Feb 07)
    - Re: BCP38 (was: Re: Why won't providers source-filter attacks? Simple.) Dobbins, Roland (Feb 07)
    - Re: BCP38 (was: Re: Why won't providers source-filter attacks? Simple.) Chris Grundemann (Feb 07)
    - Re: BCP38 (was: Re: Why won't providers source-filter attacks? Simple.) Dobbins, Roland (Feb 07)
    - Re: BCP38 (was: Re: Why won't providers source-filter attacks? Simple.) Jay Ashworth (Feb 08)
    - Re: Why won't providers source-filter attacks? Simple. Saku Ytti (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Jimmy Hess (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Mark Andrews (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Randy Bush (Feb 05)
    - Re: Why won't providers source-filter attacks? Simple. Paul Ferguson (Feb 05)

(Thread continues...)