Recent Network Management News:
- Published on Thursday, 13 March 2014 13:48
Recently, the Internet community has taken notice of NTP amplification attacks, as well as other attacks leveraging DNS, SNMP, and other protocols. These attacks take advantage of the fact that some networks have not taken steps to prevent network address spoofing. Since we have been asked what steps Comcast takes to prevent network spoofing, we have put together an FAQ on the subject.
In short, we use one of two techniques: Unicast Reverse Path Forwarding (uRPF) verification and DOCSIS Source Address Verification (SAV). Using these techniques our customers are prevented from sending traffic with spoofed IP addresses through their cable modems.
Read more about this topic here in these FAQs on preventing network spoofing.