Re: two ethernet without routing

To: debian-isp@lists.debian.org
Subject: Re: two ethernet without routing
From: "Jeremy C. Reed" <reed@wcug.wwu.edu>
Date: Wed, 13 Mar 2002 18:42:20 -0800 (PST)
Message-id: <[🔎] Pine.LNX.4.21.0203131431080.23119-100000@sloth.wcug.wwu.edu>
In-reply-to: <[🔎] 20020313212036.GA27156@staff.netaktiv.com>

On Wed, 13 Mar 2002, Stephane Bortzmeyer wrote:

> On Wed, Mar 13, 2002 at 10:38:53AM -0800,
>  Jeremy C. Reed <reed@wcug.wwu.edu> wrote 
>  a message of 37 lines which said:
> 
> > You shouldn't have to setup a firewall as a workaround either. If your NIC
> > card is configured for a particular IP and you want to stop it, then
> > simply unplugging the ethernet cable should do it.
> 
> No Unix work that way.

RFC 1122: strong ES model. (His problem is Linux's weak "End
System" model.)

For example, FreeBSD offers sysctl (net.inet.ip.check_interface) for
verifying that an incoming packet arrives on an interface that has an
address matching the packet's destination address.

I know other Unixes also offer this. I assume that a patch is available
for Linux kernel to also provide this.

  Jeremy C. Reed
.......................................................
     ISP-FAQ.com -- find answers to your questions
     http://www.isp-faq.com/

Reply to:

References:
- Re: two ethernet without routing
  - From: Stephane Bortzmeyer <bortzmeyer@gitoyen.net>

Prev by Date: Re: Bandwidth control on FTP
Next by Date: Re: mbox to maildir format.
Previous by thread: Re: two ethernet without routing
Next by thread: Re: two ethernet without routing
Index(es):
- Date
- Thread