what filters spoofed traffic?

asked 2014-02-26 10:52:41 -0500

brakertech gravatar image

When sending a packet with a spoofed source ip from an instance running on a compute node I noticed that the compute node is able to see the packet on vnet0 but not br10. I am running nova network and havana.

What is preventing br10 from receiving the packed containing the spoofed ip address?

Please note I am using: sysctl -w "net.ipv4.conf.default.rp_filter=0" sysctl -w "net.ipv4.conf.all.rp_filter=0"

edit retag flag offensive close merge delete