BGP & DNS WG (2)

• Recommend (ctd):

  • Best practices (max-prefix, dampening, etc)
  • Explore IPSEC to sign & auth BGP routing data
  • Complete Secure BGP & test in an operational environment
  • Investigate feasibility of egress route filtering at peering points
  • Design routers to better withstand DoS attacks
  • Greater diversity of peering interconnection
  • MD5 on BGP4 connections (help with RST attacks)
  • Improve authentication of routing info

Previous slide

Next slide

Back to first slide

View graphic version