|
Thread Index [isp-bgp] Re: EBGP and loopbacks
Ton Schoenmakers wrote: When you use RFC1918 addresses for your loopback IP's, you are virtually immune for the recently re-published TCP/BGP vulnerability. One simple static route for your EBGP peer can do the trick. Especially when you run BGP on a low-end router that could be overwhelmed when you would have to implement MD5 hashing of the BGP session.Yes, but you'd better be careful with your addressing scheme or know the ramifications of setting next hop self (or next hop a.b.c.d), as your network will see the RFC1918 address as the next hop. Any addressing overlap (which extends to the far end of the EBGP link!) can cause major problems for your BGP session and/or reachability. pt To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
Thread Index |
|
