On 6/1/06, Chris Buechler <[EMAIL PROTECTED]> wrote:
most of them wouldn't know they should put them in there anyway.
unless this has changed in pfsense, Bill isn't right unless I'm
misunderstanding what he's saying.
In m0n0wall, it automatically builds hidden antispoofing rules based
upon the routing table. Basically like uRPF. I believe pfsense should
work identically to this, somebody want to confirm or deny this? This
is really only useful for preventing spoofed traffic from passing
through the firewall, but that's all the anti-spoofing protection
measures you can generally take anyway (in addition to blocking private
networks and bogons on the WAN).
Our anti-spoofing works exactly the same as m0n0wall with exception of
the Bogons feature which automatically updates with known
networks/hosts.
Scott
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
