On Thu, Sep 19, 2002 at 11:14:01AM -0700, Crist J. Clark wrote:
> On input packets, it'd be painful and not really practical. On output
> packets, it shouldn't be _too_ bad since the routing information would
> be available.
>
> I'm not quite sure I understand why it would be needed. If there isn
On Thu, Sep 19, 2002 at 11:07:07AM +0300, Adrian Penisoara wrote:
> Hi,
>
> When building anti-spoofing firewall rules on a routing server it
> would be very helpfull to have a way to tell ipfw (or other firewalling
> mechanisms) to pass all pachets that the source or destination IP has a
> val
Hi,
When building anti-spoofing firewall rules on a routing server it
would be very helpfull to have a way to tell ipfw (or other firewalling
mechanisms) to pass all pachets that the source or destination IP has a
valid (static/daemon) routing entry in the kernel.
Something maybe like:
