[44455] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

ACLs / Filter Lists - Best Practices

daemon@ATHENA.MIT.EDU (John McBrayne)
Tue Nov 27 18:41:49 2001

Message-ID: <3C0423AE.BAE18582@caspiannetworks.com>
Date: Tue, 27 Nov 2001 15:37:18 -0800
From: John McBrayne <mcbrayne@caspiannetworks.com>
MIME-Version: 1.0
To: nanog@merit.edu
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Errors-To: owner-nanog-outgoing@merit.edu

Is anyone aware of any current "best practices" related to the
recommended set of filtering rules (Cisco ACL lists or Juniper filter
sets) for reasons of Security, statistics collection, DoS attack
analysis/prevention, etc.?  I'm curious to see if there are any such
recommendations for Tier 1/Tier 2 backbone routers, peering points,
etc., as opposed to CPE terminations or Enterprise/LAN equipment
recommendations.

Actual config file examples would be great, if they exist.

Thanks;
..john


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[44455] in North American Network Operators' Group

ACLs / Filter Lists - Best Practices

daemon@ATHENA.MIT.EDU (John McBrayne)Tue Nov 27 18:41:49 2001

daemon@ATHENA.MIT.EDU (John McBrayne)
Tue Nov 27 18:41:49 2001