Date: Fri, 03 Oct 2003 13:35:08 -0000 From: Haesu <haesu@towardex.com> To: Tom <tom@sdf.com>, freebsd-isp@freebsd.org Subject: Re: uRPF on FreeBSD Message-ID: <20031003133526.GA90744@scylla.towardex.com> In-Reply-To: <20031002235823.M82361@light.sdf.com> References: <20031003034611.GA59149@scylla.towardex.com> <20031002235823.M82361@light.sdf.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> > Usually RPF is just done with ACLs (ipfw) on FreeBSD. It can be a > simple as have a simple input list on each interface that only permits > sources that are known to be on that interface. Since most systems aren't > running a routing protocol, so there aren't many routes and/or they don't > change often, it is probably the simplest way of doing this. > Yea... I hear that.. Although it'd be nice to have it on FreeBSD :) Even Linux has that :-/ (Though... I think Linux only does strictmode? I don't remember..) -hc -- Haesu C. TowardEX Technologies, Inc. Consulting, colocation, web hosting, network design and implementation http://www.towardex.com | haesu@towardex.com Cell: (978)394-2867 | Office: (978)263-3399 Ext. 170 Fax: (978)263-0033 | POC: HAESU-ARIN
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031003133526.GA90744>