Hi David.
Should be fine? So, you are not 100 percent sure? Okay, just
kidding (but who knows?) ;-)
Listen David, I have one more question regarding to antispoof.
As we know, typical rule can look, more or less, this way;
>
iptables -A INPUT -s 0.0.0.0/8 -j DROP etc.But recently I came across on pretty strange rule also for
antispoof. This rule, concerns 'nat' table and PREROUTING chain;
>
iptables -t nat -I PREROUTING 1 -i xx -s 192.168.0.0/16 -j DROP
So, what do you think? Using PREROUTING chain is good for
antispoof or it is better to use rule mentioned above (INPUT chain)?