I use only RFC1918 addresses in my internal network. Most people say that this can't be reached from the internet as it is not routed. But this is not the case with my ISP. They use RFC1918 also in their ISP backbone and theoretical could access my box. Therefore antispoofing makes sense. Of course this could not happen with a strict ruleset... But I don't see any reason to omit antispoofing if it is possible from the network layout.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.
