nanog mailing list archives

Re: Todd Underwood was a little late


From: Chris Adams <cmadams () hiwaay net>
Date: Fri, 18 Jun 2010 07:49:55 -0500

Once upon a time, Steve Bertrand <steve () ipv6canada com> said:
If all IP blocks are tied down to null, and urpf is enabled in loose
mode on an interface, it will catch cases where someone is sourcing
traffic to you using IPs from the unassigned space that you have in your
free pools.

That's not true on JUNOS devices - discard routes still count as valid
routes for loose-mode uRPF.
-- 
Chris Adams <cmadams () hiwaay net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.


Current thread: