From: ehiwe peter (ccie.in.nigeria@gmail.com)
Date: Thu Aug 21 2008 - 13:00:49 ART
It is not necesary to configure inbound and outbound acl with unicast RPF it
all depends on the application.The inbound and outbound acl is suited for
service provider environments where you want only addresses from your cidr
block to source traffic(applied outbound) and *any private address or
reserved addresses and your own cidr block* is denied from the
internet(applied inbound).The ingress and egress filters just makes unicast
RPF more effective.
suggest reading te doc cd link again
http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_cfg_unicast_rpf_ps6350_TSD_Products_Configuration_Guide_Chapter.html#wp1001323
On Thu, Aug 21, 2008 at 3:37 PM, Mohamed Tandou <dtandou@gmail.com> wrote:
> Hello GS,
> When configuring Unicast Reverse Path Forwarding per DocCd you should
> configure egress filtering and ingress filtering.
> For egress filtering should i permit my loopback and internal ip addresses
> and deny everything else? for ingress filtering permit same network and
> deny
> everything else? Please let me know
>
> Thanks
>
>
> Moh
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Sep 01 2008 - 08:15:31 ART