Tough to get a spoofed IP to actually route back to it's host though, so
other than those unfortunate to be on a flat network, still not too much
of an issue . . .
- Tim
On 09/12/2016 04:46 PM, Stuart D. Gathman wrote:
On Mon, 12 Sep 2016, Tim Dawson wrote:
Or just set up sane firewall rules to allow the two to talk, but block
external traffic. I have run this way for years - all add'rs ar IANA
in a
subnet block, and just that block is open locally, and all other
external
IP's severely restricted, and NUT works great . . .
Yeah, but IANA ips are easy to spoof. With cjdns, you allow just the
cjdns IPs to connect to nut (or whatever) and they can't be spoofed.
You can even use telnet over cjdns ips. :-)
--
Tim Dawson
972-567-9360
_______________________________________________
Nut-upsuser mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/nut-upsuser
