Tecnología que se utiliza en los routers IP para tratar de evitar la suplantación de la dirección de origen, que se utiliza a menudo por ataques DenialOfService. El router analiza la dirección origen de los paquetes recibidos y la compara con la información de encaminamiento de que dispone. Si hay una diferencia en la interfaz de recepción y de envío, desecha el paquete.
Reverse Path
Filtering (RPF) is a technology that is used on IP routers to try and prevent source address
spoofing, which is often used for Denial-Of-Service attacks. RPF works by checking
the source IP of each packet received on an interface against the routing
table. If the best route for the source IP address does not use the same
interface that the packet was received on the packet is dropped. There are some
situations where this feature will obviously not be the desired behaviour and
will need to be disabled. In general if you are not multi-homed then enabling
RPF on your router will not be a problem.
http://wiki.wlug.org.nz/ReversePathFiltering
Temas relacionados