Dave Lister <(E-Mail Removed)> wrote:
> How do I configure the static route table to block all broadcast packets
> from routing between the internal and external subnets?
>
> Currently the route table only contains the two subnets.
Which kind of broadcast do you want to block? The limited
local broadcast 255.255.255.255 is blocked by the router
anyway. Whether 135.244.127.255 is a broadcast address
can't be determined easily and therefore it is hard to
determine whether to block or not.
If you know all external networks you can block each broadcast
address via iptables. Something like
iptables -A FORWARD -d 135.244.0.255 -j DROP
With this you block subnet directed broadcasts to the network
135.244.0.0/24. Of course this does not work if you mean with
"external subnets" the Internet. :-)
If you only want to block incoming broadcasts to your internal
net you should also use a similar iptables rule like above.
HTH
Ciao, Horst
--
»When pings go wrong (It hurts me too)« E.Clapton/E.James/P.Tscharn
|
Similar Threads
Linear Mode
