4 Nov
2010
4 Nov
'10
7:19 a.m.
On Nov 5, 2010, at 7:27 AM, Ian Batterbee wrote:
or they're spoofed and someone is targeting our customers with unsolicted dns responses.
If you've implemented BCP38/84 antispoofing mechanisms at the edges of your network via iACLs, uRPF, etc., folks outside your network shouldn't be able to send traffic spoofed with your IPs/your customers' IPs into your network from outside.
-----------------------------------------------------------------------
Roland Dobbins