Julia Thorne, on Wed, 12 May 2004 14:57:45 -0500, in
<Zkvoc.4373322$iA2.513727@news.easynews.com>, said this:

> [...]
> Connections with spoofed IP sources are NEVER legitimate traffic,
> and shouldn't be allowed just because they appear to be normal
> traffic, going to a publicly accessible port.

If a packet spoofs an address that doesn't belong to
a private network, is there any way to detect
that it's fake?

PS.
Thanks Brad, your iptables config proved to be very
educational for me.