[47578] in North American Network Operators' Group
Re: Effective ways to deal with DDoS attacks?
daemon@ATHENA.MIT.EDU (Ralph Doncaster)
Mon May 6 19:09:35 2002
Date: Mon, 6 May 2002 19:04:11 -0400 (EDT)
From: Ralph Doncaster <ralph@istop.com>
To: "Steven W. Raymond" <steven_raymond@eli.net>
Cc: Stephen Griffin <stephen.griffin@rcn.com>,
"Christopher L. Morrow" <chris@UU.NET>,
"nanog@merit.edu" <nanog@merit.edu>,
"bgreene@cisco.com" <bgreene@cisco.com>
In-Reply-To: <3CD6D769.F5C18B07@eli.net>
Message-ID: <Pine.LNX.4.21.0205061903001.627-100000@cpu1693.adsl.bellglobal.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
> What's NANOG's opinion: assuming that uRPF is implemented on all
> customer interfaces, are there any legitimate purposes for a customer to
> forward packets with source IP addresses not currently routed by the
> transit provider towards the customer (either static or BGP)?
IP Tunneling - it often makes more sense to send packets out that have a
source address reachable only through the tunnel.
