Assuming a strictly symmetric routing, is there any difference between using
antispoof rules and blocking incoming packets that fail the unicast reverse path forwarding check (urpf-failed)? I've actually seen a number of examples that employ both. Is it necessary to use both? Are there any other advantages of one over the other?