Re: [nsp] More on RPF checking bug

From: Hank Nussbacher (hank@att.net.il)
Date: Mon Feb 11 2002 - 01:59:11 EST

Next message: Andrey Kostin: "Re: [nsp] RPF checking bug?"
Previous message: Basil Kruglov: "Re: [nsp] More on RPF checking bug"
In reply to: Basil Kruglov: "Re: [nsp] More on RPF checking bug"
Next in thread: Hank Nussbacher: "Re: [nsp] More on RPF checking bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

At 12:49 AM 11-02-02 -0600, Basil Kruglov wrote:
>On Mon, Feb 11, 2002 at 08:34:57AM +0200, Hank Nussbacher wrote:
> >
> http://www.cisco.com/univercd/cc/td/doc/product/software/ios111/cc111/uni_rpf.htm
> > states: "Unicast RPF is compatible with per-packet and per-destination
> load
> > sharing using CEF."
>
>correct me I'm wrong, but I think you want something like this
>
>"ip verify unicast source reachable-via any" and not the
>"ip verify unicast reverse-path" on your serial interfaces.
>
>check http://www.cisco.com/public/cons/isp/documents/uRPF_Enhancement.pdf
>for more details.

Yes I know of the uRPF enhancement but that is more geared for
multihoming. This is an edge environment with just 2 E1 lines being per
packet load balanced and there is no indication in the RPF documentation
that this shouldn't work in the "simple" format.

-Hank

>-Basil

Next message: Andrey Kostin: "Re: [nsp] RPF checking bug?"
Previous message: Basil Kruglov: "Re: [nsp] More on RPF checking bug"
In reply to: Basil Kruglov: "Re: [nsp] More on RPF checking bug"
Next in thread: Hank Nussbacher: "Re: [nsp] More on RPF checking bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:13:04 EDT