Hello, On 18 Nov 2002, Vincent Jaussaud wrote: > Right. And disabling rp_filter might open a security hole; so I'll For internal interfaces rp_filter is optional. > ensure traffic always go through the right interface. > > - TCP connect() for unbound socket uses saddr=0.0.0.0 daddr=REMOTE_IP. > > The routing then returns the best source IP to use for this connection > > after creating a connected route in the routing cache. > What do you mean by "unbound socket" ? socket(), connect(), i.e. when there is no bind() to local addr. Regards -- Julian Anastasov <ja@ssi.bg> _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
