Traditional IPv4 routing is summarized as "All routing is a destination driven process". When a router looks at an IPv4 packet it cares only about the destination address in the header of the packet. It uses this destination address to make a decision on where to forward the packet. But what if you want to route packetsdifferently depending not only on the destination addresses but also on other packet fields such as source address, IP protocol, transport protocolports or even packet payload?This is Policy Routing and this book tells you how to do it.
"synopsis" may belong to another edition of this title.
Linux machines, with their low cost and practically infinite configurability, work fantastically as specialized network nodes like routers and firewalls. Matthew Marsh has done a lot of research into the applicability of Linux as a router operating system--specifically to unusually complex IPv4 routing requirements--and has compiled his findings into Policy Routing Using Linux. It's a rich read for anyone interested in working with iproute2 or the Routing Policy Database (RPDB). In fact, many of the concepts Marsh discusses are applicable to routers generally; you'll find this book conceptually helpful (if not practically so) even if you do your policy routing on other kinds of equipment.
As policy routing is not a fundamental concept you must understand in order to interconnect networks, this is not an introductory text. Marsh assumes knowledge of IP addressing and routing concepts, and some familiarity with access control and packet filtering. Given that base, the author explores policy routing capabilities and limitations with great enthusiasm. He typically fills a couple of pages with conceptual text and occasional diagrams, and then jumps to examples. These alternate between command and configuration-file listings with illuminating commentary. Special topics, such as the ability of Linux's policy routing utilities to interact with dynamic routing protocols, are dealt with adequately in sidebars. --David Wall
Topics covered: The application of policies to IPv4 and IPv6 routing problems, with specific solutions outlined for the Linux operating system. Detailed coverage goes to iproute2 and the Routing Policy Database (RPDB). Examples are numerous and valuable.About the Author:
Matthew G. Marsh, founder and president of Paktronix LLC. has been working in network architecture for the last 18 years, and working with Linux networking specifically since 1993. He is the Chief Scientist of the Nebraska CERT working with IBM, US Strategic Command, the FBI and other groups on IPv4 security structures and routing. He developed the only policy routing firewall system for Linux available under the GPL, and an IPSec VPN solution using policy routing structures under Linux. Currently he is actively researching Linux security on the IBM OS/390 as well as the implementation of IPv6 on Linux and the OS/390.
"About this title" may belong to another edition of this title.
Book Description Sams, 2001. Paperback. Book Condition: New. Never used!. Bookseller Inventory # P110672320525
Book Description Sams, 2001. Paperback. Book Condition: New. Brand New!. Bookseller Inventory # VIB0672320525
Book Description Sams, 2001. Paperback. Book Condition: New. Bookseller Inventory # DADAX0672320525
Book Description Sams, 2001. Paperback. Book Condition: New. book. Bookseller Inventory # M0672320525