Best practice ACLs for a internet facing border router?
Robert Brockway
rbrockway at opentrend.net
Mon Jun 13 14:35:00 UTC 2005
On Mon, 13 Jun 2005, Drew Weaver wrote:
>
> I'm just curious if anyone has ever published a list of what is
> an agreed upon best practice list of ACLs for an internet facing border
> router. I'm talking about things like bogons, private Ip addresses, et
> cetera. If anyone is aware of anything like this I'd like to see it.
I suggest reviewing RFC3330. The bogons needs to be kept up to date (some
interesting discussions on SAGE-AU of organisations not doing that) but
for a list of subnets reserved for different purposes RFC3330 is
invaluable.
Rob
--
Robert Brockway B.Sc.
Senior Technical Consultant, OpenTrend Solutions Ltd.
Ph: +1-416-669-3073 Email: rbrockway at opentrend.net http://www.opentrend.net
OpenTrend Solutions: Reliable, secure solutions to real world problems.
Contributing Member of Software in the Public Interest http://www.spi-inc.org
More information about the NANOG
mailing list