Land and Cisco question

• Previous message (by thread): Land and Cisco question
• Next message (by thread): why not peer with LS disabling networks ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>>> for each interface on a router
>>>   block tcp which is both to and from that interface
>> I don't think that's sufficient.  What about spoofed packets arriving via
>> interface A, with IP source and destination both set to the address of
>> interface B? 
> no ip source-route should fix it.

<insert replay of we don't peer with LSR inhibitors discussion>  Though temp
inhibit until YFRV deploys fixed code is understandable.

randy

• Previous message (by thread): Land and Cisco question
• Next message (by thread): why not peer with LS disabling networks ?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]