From mboxrd@z Thu Jan  1 00:00:00 1970
From: Julian Anastasov <ja@ssi.bg>
Date: Mon, 18 Nov 2002 11:59:47 +0000
Subject: Re: [LARTC] Multipath Routing Question with Public networks
Message-Id: <marc-lartc-103762092831513@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-103746321608005@msgid-missing>
In-Reply-To: <marc-lartc-103746321608005@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org


	Hello,

On 18 Nov 2002, Vincent Jaussaud wrote:

> Right. And disabling rp_filter might open a security hole; so I'll

	For internal interfaces rp_filter is optional.

> ensure traffic always go through the right interface.
> > - TCP connect() for unbound socket uses saddr=0.0.0.0 daddr=REMOTE_IP.
> > The routing then returns the best source IP to use for this connection
> > after creating a connected route in the routing cache.
> What do you mean by "unbound socket" ?

	socket(), connect(), i.e. when there is no bind() to local addr.

Regards

--
Julian Anastasov <ja@ssi.bg>

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/