nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Request comment: list of IPs to block outbound

From: Saku Ytti <saku () ytti fi>
Date: Mon, 14 Oct 2019 09:14:37 +0300
On Mon, 14 Oct 2019 at 03:38, Grant Taylor via NANOG <nanog () nanog org> wrote:


I think you should seriously re-consider using rp_filter on a router.


rp_filter is one of the most expensive features in modern routers, you
should only use it, if PPS performance is not important. If PPS
performance is important, ACL is much faster. ACL is also applicable
to more scenarios, such as BGP customers.
-- 
  ++ytti
Previous By Date Next
Previous By Thread Next

Current thread: