Tom Yates <[EMAIL PROTECTED]> writes:
>i notice there are files
>/proc/sys/net/ipv4/conf/{all,default,eth0,lo}/accept_source_route ,
>which the doco suggests control the acceptability of source routed packets
>(d'oh). however, the doco doesn't say whether the 'all' setting overrides
>the individual interface settings, or vice-versa. can anyone shed any
>light on this?
Well, you could always try it and see ...
But a quick look at the source (2.2.1, which is probably the same in this
regard as the 2.2.5 to which you refer in your original message) suggests
that source-routed packets will be dropped if either the interface or the
"all" is set to not accept source route. (To put it another way,
accept_source_route needs to be 1 (actually, non-zero) on both the
interface and the "all" for a source-routed packet to be accepted.)
-- Brett
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
