[nsp] bgp vulnerability?

vijay gill vgill at vijaygill.com
Tue Apr 20 17:10:39 EDT 2004


On Tue, Apr 20, 2004 at 11:00:30PM +0200, Gert Doering wrote:
> Hi,
> 
> On Tue, Apr 20, 2004 at 04:55:57PM -0400, Dmitry Volkov wrote:
> > Well I was not asking about operational workarounds - like MD5 And RFC 2827,
> > etc but rather about vendor's fixes like Checkpoint, IIJ, I'm sure cisco
> > will come up soon...
> 
> A *real* vendor fix would be to completely decouple the control plane
> from the forwarding plane.

Lets hear some suggestions as to how to accomplish this!

(things like ipsec tunnels have been discussed prior, see
the last portland, oregon NANOG)

/vijay


More information about the cisco-nsp mailing list