Preventing dial-up users from spoofing... (fwd)

MegaZone (megazone@livingston.com)
Mon, 30 Dec 1996 11:10:49 -0800 (PST)

Once upon a time Kevin W. Brown shaped the electrons to say...
>I'm looking to create a filter so that dial-up users can not spoof
>machines on our internal network and other dial-up users. All of our
>users are assigned IP addresses dynamically. Is there any filter
>"keyword" that will match the IP address currently assigned to the dial-up
>user?

Not at this time. But what I would do is create one filter that only
permits traffic from the addresses in the pool. If they are a valid
subnet it is one rule. If not do one permit for each IP.

There is an RFE for the 'match the address' system.

-MZ

--
Livingston Enterprises - Chair, Department of Interstitial Affairs
Phone: 800-458-9966 510-426-0770 FAX: 510-426-8951 megazone@livingston.com
For support requests: support@livingston.com  <http://www.livingston.com/> 
Snail mail: 4464 Willow Road, Pleasanton, CA 94588