Best practice ACLs for a internet facing border router?

• Previous message (by thread): Best practice ACLs for a internet facing border router?
• Next message (by thread): Best practice ACLs for a internet facing border router?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 13 Jun 2005, Drew Weaver wrote:

> 
> 	I'm just curious if anyone has ever published a list of what is
> an agreed upon best practice list of ACLs for an internet facing border
> router. I'm talking about things like bogons, private Ip addresses, et
> cetera. If anyone is aware of anything like this I'd like to see it.

I suggest reviewing RFC3330.  The bogons needs to be kept up to date (some 
interesting discussions on SAGE-AU of organisations not doing that) but 
for a list of subnets reserved for different purposes RFC3330 is 
invaluable.

Rob

-- 
Robert Brockway B.Sc.
Senior Technical Consultant, OpenTrend Solutions Ltd.
Ph: +1-416-669-3073 Email: rbrockway at opentrend.net http://www.opentrend.net
OpenTrend Solutions: Reliable, secure solutions to real world problems.
Contributing Member of Software in the Public Interest http://www.spi-inc.org

• Previous message (by thread): Best practice ACLs for a internet facing border router?
• Next message (by thread): Best practice ACLs for a internet facing border router?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]