Where is the edge of the Internet? Re: no ip forged-source-address

• Previous message (by thread): Where is the edge of the Internet? Re: no ip forged-source-address
• Next message (by thread): Where is the edge of the Internet? Re: no ip forged-source-address
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 08 Nov 2002 01:01:33 +0530, alok said:

> there was a comment from chris saying..."never possible to knw what networks
> an bgp customer uplinks via you" which is very true.. ..so i assume u mean
> non-bgp customers? loose or strict, rpf will not work for aasymterically
> connected bgp neighbouring AS....

If loose rpf  doesn't work, you're about to start dropping packets *anyhow*.

Unless, of course, you *INTENDED* to have a topology where you're accepting
traffic from another AS and forwarding it, and you don't have a return path
yourself, but the destination *does* have an assymetric path.

Oh.. and you have to consider it acceptable that if any OTHER customer, connected
to that part of your AS that doesn't have a route, tries to contact the
source, that they can't get there.

Sounds like you're trying to either shoot yourself in the foot, or design a
new too-clever-by-half way of building a VPN.
-- 
				Valdis Kletnieks
				Computer Systems Senior Engineer
				Virginia Tech

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20021107/c35594ca/attachment.sig>

• Previous message (by thread): Where is the edge of the Internet? Re: no ip forged-source-address
• Next message (by thread): Where is the edge of the Internet? Re: no ip forged-source-address
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]