[13978] in North American Network Operators' Group
Re: Land and Cisco question
daemon@ATHENA.MIT.EDU (Randy Bush)
Sun Nov 23 10:48:51 1997
Date: Sun, 23 Nov 97 07:37 PST
From: Randy Bush <randy@psg.com>
To: Joe Shaw <jshaw@insync.net>
Cc: nanog@merit.edu
>>> for each interface on a router
>>> block tcp which is both to and from that interface
>> I don't think that's sufficient. What about spoofed packets arriving via
>> interface A, with IP source and destination both set to the address of
>> interface B?
> no ip source-route should fix it.
<insert replay of we don't peer with LSR inhibitors discussion> Though temp
inhibit until YFRV deploys fixed code is understandable.
randy
