From: Joel Shay (ccieing@yahoo.com)
Date: Mon Jan 13 2003 - 21:55:12 GMT-3
Joe,
It is protecting ISP on the ingress traffice instead of egress traffic. For example, on the ISP edge, it will allow the edge interface to accept packets with the right returning "source" address from it's customer site. As long as the source address match the routes edge learned from the same interface.
The only draw back is that if the customer has multi-home upstream, it can cause the packet to drop on the ISP end.
Joe Hsieh
Joe Chang <changjoe@earthlink.net> wrote:Neat way of foiling DoS attacks, but how could an edge ISP router hold an
RPF entry for every Internet network that a customer could possibly access?
I don't think RPF allows for summary entries in the RPF table...
----- Original Message -----
From: "Jason Sinclair"
To: ;
Sent: Monday, January 13, 2003 6:54 PM
Subject: RE: Unicast RPF
> Sam,
>
> Uni RPF is a security technique to help overcome some of the common DoS
> attacks that are based on forged headers (spoofing). For details see:
>
>
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsec
> ur_c/fothersf/scfrpf.htm
>
> Cheers,
>
> Jason Sinclair CCIE #9100
> Manager, Network Control Centre
> POWERTEL
> 55 Clarence Street,
> SYDNEY NSW 2000
> AUSTRALIA
> office: + 61 2 8264 3820
> mobile: + 61 416 105 858
> email: sinclairj@powertel.com.au
>
> -----Original Message-----
> From: Sam.MicroGate@usa.telekom.de [mailto:Sam.MicroGate@usa.telekom.de]
> Sent: Tuesday, 14 January 2003 09:08
> To: ccielab@groupstudy.com
> Subject: Unicast RPF
>
> Hello Group,
>
> I know what a multicast Reverse Path Forwarding is. Anyone can explain to
me
> what is a unicast RPF? Does it have the same meaning as in multicast?
>
> Thanks.
>
> Sam
> .
> **********************************************************************
> PowerTel Limited, winners of
> Best Corporate/Wholesale Broadband Initiative, Australian Telecom Awards
2002
> Broadband Wholesale Carrier of the year, CommsWorld Telecomms Awards 2001
> Best Emerging Telco, Australian Telecom Awards 2001
>
> **********************************************************************
> This email (including all attachments) is intended solely for the named
> addressee. It is confidential and may contain commercially sensitive
> information. If you receive it in error, please let us know by reply
email,
> delete it from your system and destroy any copies.
>
> This email is also subject to copyright. No part of it should be
reproduced,
> adapted or transmitted without the prior written consent of the copyright
owner.
>
> Emails may be interfered with, may contain computer viruses or other
defects
> and may not be successfully replicated on other systems. We give no
> warranties in relation to these matters. If you have any doubts about
> the authenticity of an email purportedly sent by us, please contact us
> immediately.
>
> **********************************************************************
> .
.
---------------------------------
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now
.
This archive was generated by hypermail 2.1.4 : Sat Feb 01 2003 - 07:33:48 GMT-3