[107685] in North American Network Operators' Group
Re: Cisco uRPF failures
daemon@ATHENA.MIT.EDU (Jo Rhett)
Thu Sep 11 03:52:17 2008
From: Jo Rhett <jrhett@netconsonance.com>
To: Saku Ytti <saku+nanog@ytti.fi>
In-Reply-To: <20080908085510.GA27179@mx.ytti.net>
Date: Thu, 11 Sep 2008 00:50:29 -0700
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
On Sep 8, 2008, at 1:55 AM, Saku Ytti wrote:
> To this day I've never met network operator not using uRPF on Cisco
> gear.
> (note: network operator. It's probably not used widely by enterprises)
As someone who does a lot of work talking to NOCs trying to chase down
attack sources, I can honestly tell you that I haven't talked to a
single NOC in the last 16 months who had BCP38 on every port, or even
on most of their ports. And the majority response is "our (vendor)
gear can't handle it". As we both know, Cisco is the largest by far
vendor in the marketplace, and I've heard that name more than 70% of
the time.
--
Jo Rhett
Net Consonance : consonant endings by net philanthropy, open source
and other randomness
