IvB> Date: Thu, 22 Apr 2004 18:03:33 +0200
IvB> From: Iljitsch van Beijnum
IvB> Who says BGP sessions must run over IP(v4)?
NetBEUI, anyone? No bickering over RFC1918 on WAN links... ;-)
Eddy
--
EverQuick Internet - http://www.everquick.net/
A division of Brotsman & Dreger, Inc. - http://www
On 22-apr-04, at 16:11, Stephen J. Wilcox wrote:
There are more protection methods available than just MD5 (as you
allude to
Steve). One mitigator is to use "non-routed" space for BGP peer
connections.
Hmm ok so assume for a moment that I dont want RFC1918 for my links,
what are my options? :
On Thu, 22 Apr 2004, Blaine Christian wrote:
>
>
> > Can I use secondary IP addresses and then BGP with these addresses, this
> > would be a form of "security by obscurity" but providing you can keep the
> > info a secret thats surely going to do it?
>
> It will depend on your architecture in
On Thu, 22 Apr 2004, Niels Bakker wrote:
> * [EMAIL PROTECTED] (Stephen J. Wilcox) [Thu 22 Apr 2004, 16:11 CEST]:
> > There isnt a "link-local" for IP altho this would be a great solution
> > (surely this can be written for BGP??).
>
> 169.254/16
is not link-local and will be routed if you try.
> Can I use secondary IP addresses and then BGP with these
> addresses, this would
> be a form of "security by obscurity" but providing you can
> keep the info a
> secret thats surely going to do it?
It will depend on your architecture in large part. In some cases there is
absolutely no nee
* [EMAIL PROTECTED] (Stephen J. Wilcox) [Thu 22 Apr 2004, 16:11 CEST]:
> There isnt a "link-local" for IP altho this would be a great solution
> (surely this can be written for BGP??).
169.254/16
> Or I could use all eBGP addresses from a block which I dont route and
> filter internally.. I sus
On Tue, 20 Apr 2004, Blaine Christian wrote:
> > The other is our new hot topic of security, not sure if anyone has thought
> > of this yet (or how interesting it is) but the nature of the bgp attack
> > means that if you can view a BGP session you can figure things about a peer
> > that would ot
> The other is our new hot topic of security, not sure if
> anyone has thought of this yet (or how interesting it is) but
> the nature of the bgp attack means that if you can view a BGP
> session you can figure things about a peer that would
> otherwise be hidden from you in particular the po
