P B has a good explanation. However black hole routing is usually done on
the fly when you have a DoS attack and can't really change ACL on X routers
in your network. Routing an unwanted network into Null is the quick and
temporary way. However in the long run it is in good practice to use ACL
In a straight comparison, doing the NULL route is
handled more efficiently on the router as its just standard
L3 forwarding. If you do an ACL instead, the router has to
do additional processing on the packet.
If you're running something like a GSR or 7609 and the right
LC where ACLs are handled
Are they in the same address block or are they in separate blocks?
Best regards,
Dom Stocqueler
SysDom Technologies
Visit our website - www.sysdom.org
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Irwan Hadi
Sent: 22 August 2003 23:29
To: [EMAIL
I believe that it is best practice to block them via an ACL inbound before
they enter the router. If you route them to a Null interface the router has
to further process them.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=74273t=74267
On Fri, Aug 22, 2003 at 11:48:59PM +, Dom wrote:
Are they in the same address block or are they in separate blocks?
separate blocks.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=74271t=74267
--
**Please support
5 matches
Mail list logo
