nanog mailing list archives
Re: Filtering Source Addresses on gw-internet
From: Tony Li <tli () juniper net>
Date: 15 Aug 1997 01:59:43 -0700
jlewis () inorganic5 fdt net (Jon Lewis) writes:
I vaguely remember hearing somewhere that routing to a loopback interface was better than null0 for feeding unwanted packets into a black hole. Is that case perhaps not process switched?
Nope, sorry. Also process switched. The hack to drop things fast is to find a lightly loaded LAN interface and then forward it all to a non-existant system on that LAN. Of course, you'll have to manually configure an ARP entry for the bogon. Tony
Current thread:
- Filtering Source Addresses on gw-internet C. Jon Larsen (Aug 12)
- Re: Filtering Source Addresses on gw-internet Greg Ketell (Aug 12)
- Re: Filtering Source Addresses on gw-internet C. Jon Larsen (Aug 13)
- <Possible follow-ups>
- Re: Filtering Source Addresses on gw-internet C. Jon Larsen (Aug 12)
- Re: Filtering Source Addresses on gw-internet Jon Lewis (Aug 12)
- Re: Filtering Source Addresses on gw-internet Greg Ketell (Aug 13)
- Re: Filtering Source Addresses on gw-internet Greg Ketell (Aug 14)
- Re: Filtering Source Addresses on gw-internet Jon Lewis (Aug 15)
- Re: Filtering Source Addresses on gw-internet Tony Li (Aug 15)
- Re: Filtering Source Addresses on gw-internet Jon Lewis (Aug 15)
- Re: Filtering Source Addresses on gw-internet Greg Ketell (Aug 12)