>If you fooled the router into thinking that the reverse path for the >source is on another another interface and then used strict unicast RPF >checking, that may accomplish what you want without using ACLs. I don't >know what impact it would have on your CPU however, you'll have to >investigate or provide more details. However you'd also risk loosing any traffic that was asymmetric in nature. -Jim
- Re: Using Policy Routing to stop DoS attacks John Kristoff
- Re: Using Policy Routing to stop DoS attacks Haesu
- Re: Using Policy Routing to stop DoS attack... fingers
- Re: Using Policy Routing to stop DoS attack... Christopher L. Morrow
- Re: Using Policy Routing to stop DoS attacks Christopher L. Morrow
- Re: Using Policy Routing to stop DoS attacks Andre Chapuis
- Re: Using Policy Routing to stop DoS attacks Charles H. Gucker
- Re: Using Policy Routing to stop DoS attacks Christopher L. Morrow
- Re: Using Policy Routing to stop DoS attacks Petri Helenius
- RE: Using Policy Routing to stop DoS attacks Jim Deleskie
- RE: Using Policy Routing to stop DoS attacks Christopher L. Morrow
