Great Circle Associates Firewalls
(January 1994) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Source-address spoofing
From: mjr @ tis . com
Date: Mon, 3 Jan 94 11:54:47 EST
To: dotytr @ nscultrix2 . network . com, firewalls @ greatcircle . com, netmaine @ ansremote . com 
>Network Systems routers allow you to test for the presence of any IP option,
>and to allow or disallow the packet.  There's also audit capability (sort
>of like syslog).

	Do you support filtering on input, or is the filtering
output based?

I.e., I want to tell my router:
	"block any traffic coming in to network A or B through the T1
interface, if it claims to have originated from network A or B."

mjr.
Follow-Ups:
Indexed By Date Previous: Re: Packet Filter Performance
From: sob @ hsdndev . harvard . edu (Scott Bradner)
Next: Internet risk and advice
From: timg @ buckhill . HQ . ileaf . com (Tim Giebelhaus)
Indexed By Thread Previous: Re: Source-address spoofing
From: dotytr @ nscultrix2 . network . com (Ted Doty)
Next: Re: Source-address spoofing
From: Remy Giraud <Remy . Giraud @ meteo . fr>
Google
 
Search Internet Search www.greatcircle.com