rp_filter; iptables; spoofing

[Zdenek Pytela]

David Trcka píše:
> Tedy abych to upresnil:
> 
> rp_filter - INTEGER
> 	2 - do source validation by reversed path, as specified in RFC1812
> 	    Recommended option for single homed hosts and stub network
> 	    routers. Could cause troubles for complicated (not loop free)
> 	    networks running a slow unreliable protocol (sort of RIP),
> 	    or using static routes.
	Tato hodnota je novinka nebo odkud je ten popis? Já nemám dvojku
popsánu ani v 2.4.16 ani 2.5.25. Jinak dík za odkazy.

-- 

--Zdeněk Pytela, <letty na mrakoplas.phil.muni.cz>