Network stack setup

To: debian-user@lists.debian.org
Subject: Network stack setup
From: krystof@ibse.cz
Date: Tue, 14 Mar 2023 19:51:44 +0100
Message-id: <[🔎] 4785102.GXAFRqVoOG@probook455-g7>

Hello everyone,
I have a question about network stack configuration in Linux. Lets assume a Linux host with multiple network interfaces, a different ip address is set on each interface (for example eth0: 192.168.0.1/24 and eth1: 192.168.1.1/24) and forwarding is disabled. When another host in the network 192.168.0.0/24 sets a default route to this host and ping to 192.168.1.1, it will get a reply. Is there any way to prevent this behavior - meaning the first host replies only to traffic with destination address set on input interface and not all addresses set on the host? Something like rp_filter but for destination addresses? Or is the only way to set up a firewall with input interfaces and destination addresses in every rule?

Best regards,
ks

Reply to:

Follow-Ups:
- Re: Network stack setup
  - From: Henning Follmann <hfollmann@itcfollmann.com>
- Re: Network stack setup
  - From: Joe <joe@jretrading.com>

Prev by Date: Re: Grub bug on Debian 11
Next by Date: Re: Grub bug on Debian 11
Previous by thread: Re: [bullseye] Policykit
Next by thread: Re: Network stack setup
Index(es):
- Date
- Thread