Subject: Re: Ye olde PR #991 - packets destined for interface IP# are accepted regardless of which interface they arrive on.
To: Andrew Brown <atatat@atatdot.net>
From: Perry E. Metzger <perry@piermont.com>
List: tech-net
Date: 05/06/2000 15:36:39
Andrew Brown <atatat@atatdot.net> writes:
> if you're a firewall, you should have ipforwarding off and you should
> be proxying services.  if you're forwarding packets, you're *NOT* a
> firewall.

Not everyone builds things this way.

.pm