an effect of ignoring BCP38

Paul Vixie vixie at
Mon Sep 8 09:07:02 CDT 2008

bmanning at wrote:
> yes, but would it work if we all did BCP38 filtering?

randy at (Randy Bush) writes:
> i think kc said it all well enough

i'd be satisfied if bcp38 were widely enough deployed so that experiments
based on ip spoofing wouldn't be scientifically valid due to sample size
and population size issues.

i know there's no way to force or enforce, nor any way to prove, universal
bcp38 compliance, and so i know that all apps, protocols, firewalls, and
ops staff will have to live with ip spoofing as a real possibility forever.

in spite of that i would like ip spoofing to become an unreliable service.
Paul Vixie

More information about the NANOG mailing list