[195628] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Cogent BCP-38

daemon@ATHENA.MIT.EDU (Saku Ytti)
Tue Aug 29 05:44:29 2017

X-Original-To: nanog@nanog.org
In-Reply-To: <FECF78C7-09EB-489F-9200-32442B3F7150@inoc.net>
From: Saku Ytti <saku@ytti.fi>
Date: Tue, 29 Aug 2017 12:44:24 +0300
To: Robert Blayzor <rblayzor.bulk@inoc.net>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

On 29 August 2017 at 03:38, Robert Blayzor <rblayzor.bulk@inoc.net> wrote:

> Well not completely useless. BCP will still drop BOGONs at the edge before they leak into your network.

Assuming you don't use them in your own infra. And cost of RPF is lot
higher than cost of ACL. Them being entirely static entities they
should be in your edgeACL. The only real justification for loose RPF
is source based blackholing.

-- 
  ++ytti


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[195628] in North American Network Operators' Group

Re: Cogent BCP-38

daemon@ATHENA.MIT.EDU (Saku Ytti)Tue Aug 29 05:44:29 2017

daemon@ATHENA.MIT.EDU (Saku Ytti)
Tue Aug 29 05:44:29 2017