Like this:
Let's say some corporate information provider lets my uni IP subnet retrieve pages, but no-one else.
Then start digest peering with siblings outside that IP range. The false digest hits on the outside
siblings cause THEM to try retrieving the page, which will not succeed due to IP access control at
the remote site, and the user is denied access.
Jiri Randus wrote:
>
> Alex Rousskov wrote:
>
> > How can IP based access control on remote sites distinguish false hit from a
> > true hit or ICP hit from a digest hit?
>
> It can't. If your machine has only a hit-access on the peer, all you will get on a false hit is an error
> message saying that you are violating the sibling relationship.
>
> JAR (the story of my life)
-- Dr. Andrew Smith Any OPINIONS expressed are Network Development mine and do not necessarily Prentice Centre reflect the views of the University of Queensland University of Qld. Australia, 4072. email: ccasmith@prentice.uq.edu.au phone: 07 336 57408Received on Wed Nov 25 1998 - 16:45:38 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:43:22 MST