Luca: Check http://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/s ec_acl_sel_drop_ps6350_TSD_Products_Configuration_Guide_Chapter.html#wp1 043334 Not the whole story, but :) Hope it helps, Dario
-----Original Message----- From: Luca Tosolini [mailto:bit.gossip@chello.nl] Sent: Wednesday, October 28, 2009 3:06 PM To: nanog Subject: ip options
Experts, out of the well-known values for ip options:
X@r4# set ip-options ? Possible completions: <range> Range of values [ Open a set of values any Any IP option loose-source-route Loose source route route-record Route record router-alert Router alert security Security stream-id Stream ID strict-source-route Strict source route timestamp Timestamp
I can only think of: - RSVP using router-alert - ICMP using route-record, timestamp
But I can not think of any other use of any other IP option. Considering the security hazard that they imply, I am therefore thinking to drop them.
Is any other ip options used by: ospf, isis, bgp, ldp, igmp, pim, bfd? Thanks, Luca.