uRPF question

Unanswered Question
Feb 18th, 2009

How does unicast reverse path forwarding work when there is a default route in the FIB?

uRPF does a reverse check to make sure that the return sourced traffic can make it back through that same interface otherwise its dropped. Now what happens if its a spoofed source IP and uRPF checks the FIB and there is a default route? It still forwards it as usual, or am I confused?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Harold Ritter Wed, 02/18/2009 - 16:38

Sparky,

The default route is not considered unless you configure the allow-default keyword as follow:

ip verify unicast source reachable-via any allow-default

Regards

Actions

This Discussion