On 27-sep-2006, at 17:27, Ron Bonica wrote:
Would it be useful if upstream networks that validated source
addresses
somehow signed* the packet? If they did that, when the packet enters
your network, you will know which packets come with an assurance of
source address validity from the upstream network.
Assuming the obvious difficulties with such an approach can be worked
out: sure. But I'm afraid we'll again see that a significant number
of people won't implement these measures.
Something along the same lines: let me communicate back to a router
in the source AS my permission to receive packets. People who send
too much traffic to destinations that don't give permission are
blocked or throttled.
_______________________________________________
Int-area mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/int-area
