[nsp] bgp vulnerability?
vijay gill
vgill at vijaygill.com
Tue Apr 20 17:10:39 EDT 2004
On Tue, Apr 20, 2004 at 11:00:30PM +0200, Gert Doering wrote:
> Hi,
>
> On Tue, Apr 20, 2004 at 04:55:57PM -0400, Dmitry Volkov wrote:
> > Well I was not asking about operational workarounds - like MD5 And RFC 2827,
> > etc but rather about vendor's fixes like Checkpoint, IIJ, I'm sure cisco
> > will come up soon...
>
> A *real* vendor fix would be to completely decouple the control plane
> from the forwarding plane.
Lets hear some suggestions as to how to accomplish this!
(things like ipsec tunnels have been discussed prior, see
the last portland, oregon NANOG)
/vijay
More information about the cisco-nsp
mailing list