From owner-freebsd-current Tue Aug 17 0: 7: 7 1999 Delivered-To: freebsd-current@freebsd.org Received: from mercury.is.co.za (mercury.is.co.za [196.4.160.222]) by hub.freebsd.org (Postfix) with ESMTP id 78AEA155C7 for ; Tue, 17 Aug 1999 00:06:56 -0700 (PDT) (envelope-from geoffr@is.co.za) Received: from ISJHBEX (isjhbexnode.is.co.za [196.26.1.2]) by mercury.is.co.za (8.9.3/8.9.3) with ESMTP id IAA02191; Tue, 17 Aug 1999 08:02:06 +0200 Received: by isjhbex.is.co.za with Internet Mail Service (5.5.2448.0) id ; Tue, 17 Aug 1999 09:11:14 +0200 Message-ID: From: Geoff Rehmet To: "'Rodney W. Grimes'" , Geoff Rehmet , current@FreeBSD.ORG Subject: RE: Dropping connections without RST Date: Tue, 17 Aug 1999 09:11:13 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2448.0) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > > This is an ACK. I like those names, the idea is okay given that > the documentation for it reflects what has been discussed here in > this thread so folks can understand this is a very simple security > measure. Hmm, dumb question for the day - where are things like "log_in_vain" documented. - And don't anyone say "in /etc/defaults/rc.conf"! If there is a manpage, I sure as hell haven't found it! Looks like I'm volunteering to write a manpage for the net.inet sysctls - or does one exist? - I sure as hell can't find it! > > And it works just like a blackhole route does... if no more specfic > route exists we send the packet to a bit bucket, now someone want > to make the routing code under ``port routes'' :-) :-)... That sounds rather like a plug gateway. :-) :-) A kernel level plug gateway would be quite a funky thing though. :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message