[52661] in North American Network Operators' Group
Re: what's that smell?
daemon@ATHENA.MIT.EDU (Iljitsch van Beijnum)
Tue Oct 8 11:03:54 2002
Date: Tue, 8 Oct 2002 17:00:38 +0200 (CEST)
From: Iljitsch van Beijnum <iljitsch@muada.com>
To: Joe Abley <jabley@isc.org>
Cc: <nanog@merit.edu>
In-Reply-To: <E78FF790-DACD-11D6-90BF-00039312C852@isc.org>
Errors-To: owner-nanog-outgoing@merit.edu
On Tue, 8 Oct 2002, Joe Abley wrote:
> >> What is difficult about dropping packets sourced from RFC1918
> >> addresses before they leave your network?
> > But what's the point?
> Politeness, I guess. Seems rude to send traffic to peers when you
> absolutely know that the source address is inaccurate.
Politeness is good, truthfulness is usually better. If a peer isn't
properly filtering, I'd rather find out sooner (some RFC 1918 packets)
than later (DoS attack).
> > That's like complaining that the door isn't locked while the house has
> > no walls.
> Right. The no walls problem is far more usefully tackled by filtering
> inbound at the edge, not outbound.
No complaints from me if that is what people do.
