[lug] rp_filter effectiveness
Calvin Dodge
caldodge at fpcc.net
Thu May 25 10:14:02 MDT 2000
I just ran across a reference to "rp_filter"
(/proc/sys/net/ipv4/conf/*/rp_filter) in Network Magazine (I'd never heard of
it before), and it looks like it would help prevent computers on a local
network from sending IP packets with spoofed source addresses to an outside
location.
But in reading peoples' comments on this (found via Google), I've seen claims
by some that it isn't effective at this task.
Does anyone here have any experience with using rp_filter? Has it been
effective for you?
Thanks,
Calvin
--
Calvin Dodge
Certified Linux Bigot
http://www.caldodge.fpcc.net
More information about the LUG
mailing list