[38018] in North American Network Operators' Group
Re: Anti-spoofing: is anyone doing it?
daemon@ATHENA.MIT.EDU (Dan Hollis)
Sun May 27 01:24:05 2001
Date: Sat, 26 May 2001 22:21:29 -0700 (PDT)
From: Dan Hollis <goemon@anime.net>
To: Hank Nussbacher <hank@att.net.il>
Cc: <nanog@merit.edu>
In-Reply-To: <4.3.2.7.2.20010527072814.00aece30@max.att.net.il>
Message-ID: <Pine.LNX.4.30.0105262220250.14761-100000@anime.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
On Sun, 27 May 2001, Hank Nussbacher wrote:
> We have found that about 5% of sites are connected to 2 ISPs but do not use
> BGP. They use two different sets of IP addresses and point default to one
> of the two ISPs. The return traffic will of course go to them via one of
> the two ISPs, but if you have anti-spoofing filters set up or try to set it
> up now, you will break their outgoing traffic.
They need better routers which can source route, then absolutely nothing
will break (and their return traffic wont be taking suboptimal assymetric
paths).
-Dan
