FWIW, I presented a paper at LISA last week that described almost an identical configuration. Slides and paper are available from http://www.net.cmu.edu/pres/lisa03
-Kevin
--On Friday, November 07, 2003 1:19 PM -0600 "Robert A. Hayden" <[EMAIL PROTECTED]> wrote:
uRPF was designed primarily to block spoofed IPs. However, you can trick it into blocking non-spoofed IPs by making the routing table think the IP address should legitimately be located somewhere else.
