[24652] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: SYN spoofing

daemon@ATHENA.MIT.EDU (Daniel Senie)
Wed Jul 28 14:49:22 1999

Date: Wed, 28 Jul 1999 14:45:53 -0400
From: Daniel Senie <dts@senie.com>
To: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu


Wayne Bouchard wrote:
> 
> Right, but ISPs can still filter on the corporate networks and at the
> aggregation points for DSL and dial and any non-bgp customer. Those
> talking BGP to you should be encouraged to do similarly. The full
> thing is like next to impossible to maintain but doing these kinds of
> relatively stady-state bits and pieces can help.

And especially filtering out stuff like RFC 1918 source addresses and
such. That kind of thing should be possible on all routers (core and
edge) rather than adding to the pollution on the 'net.

-- 
-----------------------------------------------------------------
Daniel Senie                                        dts@senie.com
Amaranth Networks Inc.            http://www.amaranthnetworks.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[24652] in North American Network Operators' Group

Re: SYN spoofing

daemon@ATHENA.MIT.EDU (Daniel Senie)Wed Jul 28 14:49:22 1999

daemon@ATHENA.MIT.EDU (Daniel Senie)
Wed Jul 28 14:49:22 1999