>>> On 3/28/2008 at 5:11 AM, pkc_mls
<pkc_mls YAHOO.FR> wrote:
> Hi all,
>
> did anyone already configured source routing on splat
?
> it's supposed to work on linux kernel since 2.2.
>
> what about support for such configurations ?
Do you really mean source routing? That is, using IP
options
to specify the gateways through which a packet should or
must pass, depending on whether you do strict or loose
source routing. I believe FW-1 drops packets with IP
options
by default, but that that is configurable to some degree.
Or are you asking whether you can do policy routing based
on source address? SPlat has the netfilter mangle kernel
module,
/lib/modules/2.6.18-22cp/kernel/net/ipv4/netfilter/iptable_m
angle.ko
But I don't see an iptables(8) executable to actually put
in any rules to use the module. Even then, not sure if it
would work.
BĀ¼information contained in this e-mail message is
confidential, intended
only for the use of the individual or entity named above. If
the reader
of this e-mail is not the intended recipient, or the
employee or agent
responsible to deliver it to the intended recipient, you are
hereby
notified that any review, dissemination, distribution or
copying of this
communication is strictly prohibited. If you have received
this e-mail
in error, please contact postmasterglobalstar.com
Scanned by Check Point Total Security Gateway.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERVamadeus.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http:
//www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-ownerts.checkpoint.com
=================================================
|
