-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Wolfgang" == Wolfgang Rupprecht <wolfgang+gnus20011023T091550@wsrcc.com> writes:
    >> Check the "ifdefault" work done by Paul Vixie and Ted Lemon a few years ago.
    >> ftp://ftp.vix.com/pub/vixie/ifdefault/

    Wolfgang> Caution, this is kind of a rude (but clever) hack that only works if
    Wolfgang> one has an essentially empty routing table.  If there are any
    Wolfgang> intervening CIDR entries between the target X.X.X.X/32 and 0.0.0.0/0
    Wolfgang> then the per-interface route entry will never be consulted.
    Wolfgang> Essentially the per-interface logic only kicks in for default.

  What you say is very true.

  "fastroute" with IPF does not work since I in fact have only one
interface with aliases. I need to go back out the gateway on which the packet
arrived. So, for me, the ifdefault would work (but I have to hack it back in
to 1.5.2)

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] mcr@sandelman.ottawa.on.ca http://www.sandelman.ottawa.on.ca/ |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (NetBSD)
Comment: Finger me for keys

iQCVAwUBO9dqgYqHRg3pndX9AQEUqwQAux66ucvB07h2ldlg/9/Tw40Q3wkJIcEF
Xc7rsneCG9dw59xVCSODNrko+GudKQnoU3p7zXfZundul5ipn/1lJC1cQ6SKAYKS
O0dRzsrI5clCwcgtgAdX94LoORZm8yE4kJ41d+F/sSVnjhyhUKbBAVN7549gyaer
rlPppXxqtJ8=
=G/xk
-----END PGP SIGNATURE-----