tech-net: Re: Ye olde PR #991 - packets destined for interface IP# are accepted regardless of which interface they arrive on.

Subject: Re: Ye olde PR #991 - packets destined for interface IP# are accepted regardless of which interface they arrive on.
To: None <tech-net@netbsd.org>
From: Michael Richardson <mcr@sandelman.ottawa.on.ca>
List: tech-net
Date: 05/07/2000 21:58:58

>>>>> "Darren" == Darren Reed <darrenr@reed.wattle.id.au> writes:
    Darren> Introduce ip_strictdest to control the acceptance of packets on interfaces
    Darren> and by default, default it to IPSTRICTDEST as follows:
    Darren> IPSTRICTDEST undefined:
    Darren> - IPFORWARDING=1 -> IPSTRICTDEST=0
    Darren> - IPFORWARDING=0 -> IPSTRICTDEST=1

    Darren> Otherwise, it takes the value as defined.  I don't think the behaviour
    Darren> should be restricted to following IPFORWARDING rules.  For example, if
    Darren> you have an NFS server which is also routing and you want to force
    Darren> people to use the closest interface.  You don't need the burden of IP
    Darren> Filter enabled here.

  That's cool with me.

   :!mcr!:            |  Solidum Systems Corporation, http://www.solidum.com
   Michael Richardson |The Internet Packet Processing Company. At Interop LV2000
 Personal: mcr@sandelman.ottawa.on.ca. PGP key available.
 Corporate: <A HREF="mailto:mcr@solidum.com">mcr@solidum.com</A>.