14 Jun
2015
14 Jun
'15
10:43 p.m.
On Sun, Jun 14, 2015 at 05:01:37PM -1000, Antonio Querubin wrote:
What specifically does the gateway need to do?
Primarily, it needs to accept all traffic to 44/8, filter the destinations
that are to be encapsulated to the IPIP tunnels and forward to them,
and divert all the rest of the traffic to the measurement system
("telescope").
Note that the filtering is currently done based on more than just
destination subnet: using a list of registered DNS PTRs ANDed with the
gateway subnet list (some 15,947 terms), and also filtering on ports
(port 135-139,445,1025-1028 are blocked).
It needs to decapsulate traffic from the tunnels and place it on the
Ethernet for outbound routing.
Secondarily, it has to generate the pseudo-RIP, act as a slave database
server, whois server, and also serve as the master nameserver.
- Brian