Date: Tue, 17 Mar 2009 12:35:11 -0400 From: Steve Bertrand <steve@ibctech.ca> To: freebsd-ipfw@freebsd.org Subject: [Fwd: uRPF] Message-ID: <49BFD13F.8000608@ibctech.ca>
next in thread | raw e-mail | index | archive | help
[ I tried this over at -net, but with no response, thought I'd try here] Hi everyone, I've implemented RTBH within our network, but I have one small issue. I've got one FreeBSD/Quagga edge router that has an interface which contains a default route out. Although this will change in the next while, at this time, it is preventing me from doing reverse path check, thereby breaking source-based black-holing. It appears to me that IPFW's verrevpath (and it's kin) do not provide the ability to perform the RPF check and allow default. Have there been any advancements in this regard? Am I missing something, or is there another approach to allowing default with reverse path? Regards, Steve _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49BFD13F.8000608>