Iptables and ip spoofing

waverider202 · Posted: Wed Oct 09, 2002 3:29 am Post subject: Iptables and ip spoofing

Does anyone know how to configure iptables to detect spoofed ip packets? I'm writing a set up rules for iptables, and I want to add ip spoofing detection/logging.
_________________
:-P

Xor · Tux's lil' helper Joined: 07 Jul 2002 Posts: 144

you might want to say that all IANA Reserved, Private and you own Net coming in from the "untrusted" iface are spoofed.

I can't provide you the code, 'cos I don't have it handy

but you might wan't to check fwbuilder (it's a GUI, use it or use the code it produce...)

but you may allready know, that you can't detect a if a package is spoofed if it has a legit Src-IP...

my 2c
xor

plafle · n00b Joined: 03 Oct 2002 Posts: 22

have a look there
http://www.sns.ias.edu/~jns/security/iptables/index.html