North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: rfc 1918

  • From: Jim Shankland
  • Date: Thu Feb 22 19:15:36 2001

Note that the proposition, "Providers should filter RFC1918-sourced
packets at the periphery" is a subset of the proposition, "Providers
should filter at the periphery packets with source addresses not
explicitly authorized by the provider."  I subscribe to the second
proposition, and hence implicitly to the former.  The problem is not
the stray RFC1918-sourced packet here or there.  The problem is that
the de facto standard is that you can inject packets with arbitrary
source addresses into the Internet from anywhere.  The number of
attacks that use spoofed source addresses is reason enough to change

But I'm not holding my breath.

Jim Shankland