i was trying to compare "ip verify unicast source reachable-via rx allow-default" vs "ip verify unicast reverse-path" to apply it on the dialer interface on a cisco 897 configured with vdsl line connected to an isp
which one is the best?
My idea is remove the antispoofig acl, and undertand the difference.
Hello ip verify unicast source reachable-via rx allow-default"
enables strict rpf when a source ip address of a packet isn’t in the route table of the router and so allows it to use a default route as validation.
ip verify unicast reverse-path Is rpf for security devices such as firewalls
Please rate and mark as an accepted solution if you have found any of the information provided useful. This then could assist others on these forums to find a valuable answer and broadens the community’s global network.