The MPLS WG Archive

[Date Prev][Date Next][Thread Prev][Thread Next]
[Date Index][Thread Index][Author Index][Subject Index]

Basic LDP Question

From: "Nick Tingle" <nick@timetra.com>
Date: Fri, 31 May 2002 15:11:40 -0700
Cc: "Shahram Davari" <Shahram_Davari@pmc-sierra.com>, "'mpls@uu.net'" <mpls@UU.NET>, <ppvpn@ppvpn.francetelecom.com>
Importance: Normal
X-OriginalArrivalTime: 31 May 2002 22:11:40.0681 (UTC) FILETIME=[23DF5F90:01C208F0]

I believe another concern with VPNs over IP vs. MPLS is packets leaking out of
the provider network, due to, e.g. transient routing problems. Presumably this
can also be fixed with filtering.

> -----Original Message-----
> From: owner-mpls@UU.NET [mailto:owner-mpls@UU.NET]On Behalf Of
> jh@lohi.eng.song.fi
> Sent: Friday, May 31, 2002 12:09 PM
> To: Vijay Bollapragada
> Cc: Shahram Davari; 'mpls@uu.net'; 'ppvpn@ppvpn.francetelecom.com'
> Subject: RE: Basic LDP Question
>
>
> packet spoofing is quite easy to prevent by a single access list at
> ingress to other providers that drops a packet if its source address
> belongs to the network that is used for the loopback interfaces that
> terminate the ip tunnels at the pes.
>
> what comes to subscriber links, we, and any reasonable service provider,
> of course always check that the source addresses belong to the
> subscribers.
>
> -- juha
>
>