Filtering Source Addresses on gw-internet

• Previous message (by thread): Filtering Source Addresses on gw-internet
• Next message (by thread): Samsung
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

jlewis at inorganic5.fdt.net (Jon Lewis) writes:

> I vaguely remember hearing somewhere that routing to a loopback interface
> was better than null0 for feeding unwanted packets into a black hole.  Is
> that case perhaps not process switched? 

Nope, sorry.  Also process switched.

The hack to drop things fast is to find a lightly loaded LAN interface and
then forward it all to a non-existant system on that LAN.  Of course,
you'll have to manually configure an ARP entry for the bogon.

Tony

• Previous message (by thread): Filtering Source Addresses on gw-internet
• Next message (by thread): Samsung
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]