[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Cisco uRPF failures

Subject: Cisco uRPF failures
From: jrhett at netconsonance.com (Jo Rhett)
Date: Thu, 11 Sep 2008 00:50:29 -0700
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <00c401c9072b$f46a38c0$dd3eaa40$@com> <[email protected]> <007401c90e25$6eaf2280$4c0d6780$@com> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

On Sep 8, 2008, at 1:55 AM, Saku Ytti wrote:
> To this day I've never met network operator not using uRPF on Cisco  
> gear.
> (note: network operator. It's probably not used widely by enterprises)

As someone who does a lot of work talking to NOCs trying to chase down  
attack sources, I can honestly tell you that I haven't talked to a  
single NOC in the last 16 months who had BCP38 on every port, or even  
on most of their ports.  And the majority response is "our (vendor)  
gear can't handle it".   As we both know, Cisco is the largest by far  
vendor in the marketplace, and I've heard that name more than 70% of  
the time.

-- 
Jo Rhett
Net Consonance : consonant endings by net philanthropy, open source  
and other randomness

Follow-Ups:
- Cisco uRPF failures
  - From: saku+nanog at ytti.fi (Saku Ytti)

References:
- Force10 Gear - Opinions
  - From: jrhett at netconsonance.com (Jo Rhett)
- Force10 Gear - Opinions
  - From: james at towardex.com (James Jun)
- Force10 Gear - Opinions
  - From: jrhett at netconsonance.com (Jo Rhett)
- Force10 Gear - Opinions
  - From: rubensk at gmail.com (Rubens Kuhl Jr.)
- Cisco uRPF failures
  - From: jrhett at netconsonance.com (Jo Rhett)
- Cisco uRPF failures
  - From: saku+nanog at ytti.fi (Saku Ytti)

Prev by Date: BCP38 dismissal
Next by Date: BCP38 dismissal
Previous by thread: Cisco uRPF failures
Next by thread: Cisco uRPF failures
Index(es):
- Date
- Thread