The MPLS-OPS Archive

[Date Prev][Date Next][Thread Prev][Thread Next]
[Date Index][Thread Index][Author Index][Subject Index]

Re: Can such problem occur in MPLS

From: Eric Osborne <eosborne@cisco.com>
Date: Sat, 11 Jan 2003 22:32:03 -0500
Cc: mpls-ops@mplsrc.com
Resent-Date: Sat, 11 Jan 2003 23:50:09 -0500
To: Mehwish Ahmed <mehwishkhurshid@yahoo.com>
User-Agent: Mutt/1.2.5i
X-GPG-Fingerprint: 6412 0836 E440 B3EA 980C 4951 611E 1819 2E71 8562

On Sat, Jan 11, 2003 at 01:00:27PM -0800, Mehwish Ahmed wrote:
> 
> I got a confussion if such problems can occur in MPLS
> 
> In any case is it possible that router in a LSP sends bogus packet with correct outgoing Label...??
> 
> or
> 
> If somehow a label is spoofed from a LSP and same label is then used to sent bogus packet through LSP ...??
> 
> Like Router1 uses LABEL1 as outgoing label for messages send to Router2, both Router1 and Router2 are in LSP.If attacker spoofs link between Router1 and Router2  to get value of label i.e LABEL1.Then using the same LABEL1 attacker pushes rudendent data array in LSP. 
> 

Bottom line(s):

1) don't accept labels from a customer outside of a CSC scenario, and
   the risk of label spoofing goes away.

2) if you're talking about bugs, sure anything's possible.




eric

> 
> 
> ---------------------------------
> Do you Yahoo!?
> Yahoo! Mail Plus - Powerful. Affordable. Sign up now

-------
The MPLS-OPS Mailing List
Subscribe/Unsubscribe:  http://www.mplsrc.com/mplsops.shtml
Archive: http://www.mplsrc.com/mpls-ops_archive.shtml

References:
- Can such problem occur in MPLS
  - From: Mehwish Ahmed <mehwishkhurshid@yahoo.com>
- Can such problem occur in MPLS
  - From: Mehwish Ahmed <mehwishkhurshid@yahoo.com>