IGP protocol
Saku Ytti
saku at ytti.fi
Tue Nov 13 15:30:41 UTC 2018
On Tue, 13 Nov 2018 at 16:27, Alain Hebert <ahebert at pubnix.net> wrote:
> For those that got involved in fixing a network that goes down due to OSPF spoofed packets... (Before OSPFv2|3)
> + Security for IS-IS
Do you know connected host can't talk ISIS to you?
ISIS is false security. In modern platforms OSPF almost always can be
protected (iACL), ISIS in many times cannot. I'd run MD5 in either
case.
--
++ytti
More information about the NANOG
mailing list