[j-nsp] stealth bgp vulnerability?
Rob Walton
robert.walton at dante.org.uk
Thu Apr 15 10:56:56 EDT 2004
we've been down this road of discussion before paul.. ;o) this is my *only*
gripe with juniper when compared to Cisco from a security perspective.
At 07:54 15/04/2004 -0700, Paul Goyette wrote:
> > As i understand it their isn't enough space in hardware to allow
> > the ttl hack... I'm sure Paul Goyette can verify this.
>
>For various reasons, including availability of space within the
>internal lookup-key data structures, the Internet Processor II
>ASIC is unable to filter on TTL.
_________________________________________________________________
* * Rob Walton - Network engineer
* *
* Francis House Tel +44 1223 302 992
* 112 Hills Road Fax +44 1223 303 005
* Cambridge CB2 1PQ
D A N T E United Kingdom
_________________________________________________________________
More information about the juniper-nsp
mailing list