Edouard Soriano wrote: > 2.Is there a way to validate incoming packets based in Ethernet address, > means the first time we get a packet from an unknowed IP address, using > DNS or other tools to get the real IP and Ethernet address and to compare > with the received one ? No. In this case (receiving packets from a PPP link), there isn't an Ethernet address. If you were receiving the packets via Ethernet from a router, the source Ethernet address would be that of the router. Basically, there isn't any way in which you can determine whether the source IP address is genuine. And there probably isn't any way of preventing these packets from reaching your system (unless your ISP is willing to filter at their end, which is uncommon). -- Glynn Clements <glynn.clements@virgin.net> - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
