Blackhole routes vs firewall drop rules
Julian Elischer
julian at freebsd.org
Sun Feb 26 21:07:29 UTC 2012
let's try that again with the right Subject: line
On 2/26/12 1:05 PM, Julian Elischer wrote:
> On 2/26/12 5:34 AM, Bob Bishop wrote:
>> Hi,
>>
>> I'd like to hear from somebody who understands this stuff on the
>> relative merits of blackhole routes vs firewall drop rules for
>> dealing with packets from unwanted sources. I'm particularly
>> interested in efficiency and scalability. Thanks
>
> the key is the word "from". routes can only be selected on 'TO'
> (destination) where
> firewalls can select on any combination of header fields.
>
>
>
>> --
>> Bob Bishop
>> rb at gid.co.uk
>>
>>
>>
>>
>> _______________________________________________
>> freebsd-hackers at freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
>> To unsubscribe, send any mail to
>> "freebsd-hackers-unsubscribe at freebsd.org"
>>
>>
>
> _______________________________________________
> freebsd-hackers at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
> To unsubscribe, send any mail to
> "freebsd-hackers-unsubscribe at freebsd.org"
>
More information about the freebsd-hackers
mailing list