The MPLS WG Archive

[Date Prev][Date Next][Thread Prev][Thread Next]
[Date Index][Thread Index][Author Index][Subject Index]

Basic LDP Question

From: Yakov Rekhter <yakov@juniper.net>
Date: Fri, 31 May 2002 11:04:24 -0700
cc: Giles Heron <giles@packetexchange.net>, "'mpls@uu.net'" <mpls@UU.NET>, "'ppvpn@ppvpn.francetelecom.com'" <ppvpn@ppvpn.francetelecom.com>

> > -----Original Message-----
> > From: Yakov Rekhter [mailto:yakov@juniper.net]
> > Sent: Friday, May 31, 2002 1:41 PM
> > To: Giles Heron
> > Cc: Shahram Davari; 'mpls@uu.net'; 'ppvpn@ppvpn.francetelecom.com'
> > Subject: Re: Basic LDP Question 
> > 
> > 
> > Giles,
> > 
> > > 1.  Efficient encapsulation of VPN traffic
> > > 2.  Ability to run VPN on current hardware
> > > 
> > > There are probably other reasons as well...
> > 
> > One of the "other reasons" is straightforward protection 
> > against packet 
> > spoofing.
> 
> How? 

read draft-behringer-mpls-security-01.txt

> in IP also you can do ACL.

yes, but it has its own cost/complexity.

Yakov.

References:
- Basic LDP Question
  - From: Shahram Davari <Shahram_Davari@pmc-sierra.com>