From mboxrd@z Thu Jan 1 00:00:00 1970 From: Anders Fugmann Subject: Re: Is DIVERT w/o forwarding feasible? Date: Wed, 11 Sep 2002 16:08:04 +0200 Sender: netfilter-admin@lists.netfilter.org Message-ID: <3D7F4E44.70905@fugmann.dhs.org> References: Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: Yury Bokhoncovich Cc: netfilter@lists.netfilter.org Yury Bokhoncovich wrote: >>Err, please explain why you do not want forwarding enabled. If this is > Because rule #1: "People makes mistakes". Disabled forwarding gives more > strict and reliable control under possible traffic. There are a few books > where this topic discussed (including O'Reilly's). Rephrase - You make mistakes. Thats ok, but the system was designed to forward packets. If you dont want it, then live without it. And please dont refer to opinions stated in books. If you really want a "good ol'e classic", then Bjarne Stroustrup once said that one should never put a computer on the net - Not a vailable solution is it? Compared to cars - You are saying that its dangerous to drive, and the only way to control this is to ban them - Don't go to the carmakers (this list) to ask for other solutions, when you already stated that you do not trust the cars. -- Neo: 'Can you fly that thing?' Trinity: 'Not yet'. $ apt-get install pilot-prg-v212helicopter.