Re: ipfilter, return-icmp and RFC1122

To: tech-net%NetBSD.org@localhost
Subject: Re: ipfilter, return-icmp and RFC1122
From: der Mouse <mouse%Rodents.Montreal.QC.CA@localhost>
Date: Thu, 5 Jun 2008 23:13:02 -0400 (EDT)

> Subnet-specific broadcast addresses are only broadcast addresses on
> the subnet with that address.  If they arrive on another interface
> you can do anything you would normally do with any packet addressed
> to the same subnet, firewall or not, except that by default the
> router shouldn't forward the packet onto the subnet where it would be
> broadcast.

You mean that the "don't send ICMPs in response to packets sent to
broadcast addresses" actually means "...to packets sent to what on the
incoming interface is a broadcast address"?

/~\ The ASCII                           der Mouse
\ / Ribbon Campaign
 X  Against HTML               mouse%rodents.montreal.qc.ca@localhost
/ \ Email!           7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Follow-Ups:
- Re: ipfilter, return-icmp and RFC1122
  - From: Dennis Ferguson

References:
- Re: ipfilter, return-icmp and RFC1122
  - From: John Nemeth
- Re: ipfilter, return-icmp and RFC1122
  - From: Jim Wise
- Re: ipfilter, return-icmp and RFC1122
  - From: Dennis Ferguson
- Re: ipfilter, return-icmp and RFC1122
  - From: Jim Wise
- Re: ipfilter, return-icmp and RFC1122
  - From: Dennis Ferguson

Prev by Date: Re: ipfilter, return-icmp and RFC1122
Next by Date: Re: ipfilter, return-icmp and RFC1122
Previous by Thread: Re: ipfilter, return-icmp and RFC1122
Next by Thread: Re: ipfilter, return-icmp and RFC1122
Indexes:

Home | Main Index | Thread Index | Old Index