Differences
This shows you the differences between two versions of the page.
Both sides previous revision
Previous revision
|
Next revision
Both sides next revision
|
unix:gateway [2010/10/24 00:57] robm |
unix:gateway [2013/10/13 11:53] robm [IP Forwarding and NAT] |
| |
<code> | <code> |
echo 0 > /proc/sys/net/ipv4/conf/all/accept_redirects | echo 0 | sudo tee /proc/sys/net/ipv4/conf/*/accept_redirects |
echo 0 > /proc/sys/net/ipv4/conf/all/send_redirects | echo 0 | sudo tee /proc/sys/net/ipv4/conf/*/send_redirects |
</code> | </code> |
| |
| **Update 2013-10:** This guide used to update ''/proc/sys/net/ipv4/conf/all/accept_redirects'', but now uses ''*'' in place of ''all''. That was bad as the ''all'' configuration merely sets the default, but won't alter any existing interfaces. Thanks to [[http://unix.stackexchange.com/a/58081/22537|unix.stackexchange.com]] for this tip. |
| |
Or permanently by adding the following to ''/etc/sysctl.conf'': | Or permanently by adding the following to ''/etc/sysctl.conf'': |
| |
See http://www.itsyourip.com/Security/how-to-disable-icmp-redirects-in-linux-for-security-redhatdebianubuntususe-tested/ | See http://www.itsyourip.com/Security/how-to-disable-icmp-redirects-in-linux-for-security-redhatdebianubuntususe-tested/ |
| |
==== DNS Service ==== | ==== DNS Service ==== |
<code>sudo aptitude install bind9</code> | <code>sudo aptitude install bind9</code> |