openwrtv4

History

Alin Nastac d8748e537f netfilter: add iptables-mod-rpfilter package Unlike /proc/sys/net/ipv4/conf/INTF/rp_filter flag, rule iptables -t raw -I PREROUTING -m rpfilter --invert -j DROP prevents conntrack table to become full when a packet flood with randomly selected source IP addresses is received from the lan side. Signed-off-by: Alin Nastac <alin.nastac@gmail.com>	2017-07-11 22:09:57 +02:00
..
patches	iptables: fix typos in 600-shared-libext.patch (FS#711)	2017-05-25 19:30:36 +02:00
Makefile	netfilter: add iptables-mod-rpfilter package	2017-07-11 22:09:57 +02:00

Alin Nastac d8748e537f netfilter: add iptables-mod-rpfilter package

Unlike /proc/sys/net/ipv4/conf/INTF/rp_filter flag, rule iptables -t raw
-I PREROUTING -m rpfilter --invert -j DROP prevents conntrack table to
become full when a packet flood with randomly selected source IP addresses
is received from the lan side.

Signed-off-by: Alin Nastac <alin.nastac@gmail.com>

2017-07-11 22:09:57 +02:00

patches

iptables: fix typos in 600-shared-libext.patch (FS#711)

2017-05-25 19:30:36 +02:00

Makefile

netfilter: add iptables-mod-rpfilter package

2017-07-11 22:09:57 +02:00