On Linux, IP addresses are not bound to interfaces. You need
to use SO_BINDTODEVICE if that is what you want.
IP's are not bound to a specific interface - makes sense to me why the
traffic acts the way it acts.
The security model is correct, and well defined, just different than BSD
derived systems. It does conform to the standards (RFC's).
The model is logical, may be well defined, and could conform to every
applicable RFC - but I would argue that it's got its problems. After all,
conforming to RFC's doesn't make something secure and flawless - just look
at security flaws in TCP/IP designs over the years that followed the RFC's.
:)
_________________________________________________________________
Watch LIVE baseball games on your computer with MLB.TV, included with MSN
Premium!
http://join.msn.com/?page=features/mlb&pgmarket=en-us/go/onm00200439ave/direct/01/
|