Jared Mauch wrote:
This would be useful in a default-free network, but I'd be concerned with them deploying this in the lower end boxes that aren't default-free. It's hard to determine what is something to drop or not. What would be nice is a
"ip drop private-blocks" or somesuch, but because many people build vpns, etc... with the lower end boxes also, as a vendor i'd be too concerned about that.
Of course, the existing RPF stuff only works on routers that support CEF, which rules out anything but the top of the line boxes. Alec -- +-----------------------------------+--------------------------------+ |Alec H. Peterson - ahp@hilander.com| Network Engineer | |http://www.hilander.com | Erols Internet - an RCN Company| +-----------------------------------+--------------------------------+