Firewalls: Re: MBONE and SGI

Firewalls
(May 1994)

Indexed By Thread: [Previous] [Next]

Subject:	Re: MBONE and SGI
From:	lear @ yeager . corp . sgi . com (Eliot Lear)
Date:	Mon, 9 May 1994 11:40:22 -0700
To:	Robert Schwartzkopf <bobs @ gruagach . rand . org>, firewalls @ GreatCircle . COM
In-reply-to:	Robert Schwartzkopf <bobs @ gruagach . rand . org> "MBONE and SGI" (May 6, 3:50pm)
References:	<9405062250 . AA22101 @ gruagach . rand . org . rcc>

SGI currently runs a tunnelling mrouted, configured so that packets
with TTLs less than 32 will not be transmitted to the mbone (see
threshold).  Since no TCP services can be accessed via multicast, and
since our machines cannot unicast back to sources, we deemed the risk
to be acceptable.  It's conceivable that someone could develop a kiss
of death packet for some udp service.


-- 
Eliot Lear
[lear @
 sgi .
 com]

References:

MBONE and SGI
From: Robert Schwartzkopf <bobs @ gruagach . rand . org>

Indexed By Date	Previous:	Final: Ciscos and TIS "portscan" From: reh @ cs . UMD . EDU (Richard Huddleston)
Indexed By Date	Next:	Re: MBONE and SGI From: lear @ yeager . corp . sgi . com (Eliot Lear)
Indexed By Thread	Previous:	MBONE and SGI From: Robert Schwartzkopf <bobs @ gruagach . rand . org>
Indexed By Thread	Next:	Re: MBONE and SGI From: lear @ yeager . corp . sgi . com (Eliot Lear)