The MPLS WG Archive

[Date Prev][Date Next][Thread Prev][Thread Next]
[Date Index][Thread Index][Author Index][Subject Index]

Basic LDP Question

From: jh@lohi.eng.song.fi
Date: Fri, 31 May 2002 22:09:17 +0300
Cc: Shahram Davari <Shahram_Davari@pmc-sierra.com>, "'mpls@uu.net'" <mpls@UU.NET>, "'ppvpn@ppvpn.francetelecom.com'" <ppvpn@ppvpn.francetelecom.com>

packet spoofing is quite easy to prevent by a single access list at
ingress to other providers that drops a packet if its source address
belongs to the network that is used for the loopback interfaces that
terminate the ip tunnels at the pes.

what comes to subscriber links, we, and any reasonable service provider,
of course always check that the source addresses belong to the
subscribers.

-- juha

References:
- Basic LDP Question
  - From: Shahram Davari <Shahram_Davari@pmc-sierra.com>
- Basic LDP Question
  - From: Vijay Bollapragada <vbollapr@cisco.com>
- Basic LDP Question
  - From: Vijay Bollapragada <vbollapr@cisco.com>