>Anybody know the exact RFC in which IP source routing is defined?
>We've got a vendor who is offering to modify their kernel to provide
>a way for us to turn this off, but we have to point them to a specific
>definition of what IP source routing actually *is* before they can do this.
Did they offer to make this a base/supported modification in future releases?
We were planning a "special release" os mod once, only to find out that we
would have to pay (a different amount) with each new os release or buy a
source licence. Either of which is spelled "bring a basket of bucks".
If your turning off ip-source routing this must be a dual-homed-gateway.
It would probably cost less and be more effective to get a dual-homed
pentium and run TIS on linix. Then you can have the source. Assuming your
a c prgmer you can "fix" the kernal anyway you want. What do you loose?
Vendor support. What would you gain? An understanding at a os level of what
your dual homed gateway was doing with ip packets.
Donald J Smith
Network Security Engineer @Computing Devices International
"@begin design in the security and ease_of_use != A*(1/Data_Security)"
(my opinions are mine and so are the spelling errors ;-)