On Fri, Feb 17, 2012 at 3:21 AM, Alexander Leidinger <[email protected]> wrote: > Quoting Freddie Cash <[email protected]> (from Tue, 14 Feb 2012 08:26:54 > -0800): > >> On Tue, Feb 14, 2012 at 7:43 AM, Ian Smith <[email protected]> wrote: >>> >>> On Tue, 14 Feb 2012 2:37:55 +0100, Alexander Leidinger wrote: >>> > 1 IPSTEALTH -> changes ipfw module only? >>> >>> I don't think this is specific to ipfw. From /sys/conf/NOTES: >>> >>> # IPSTEALTH enables code to support stealth forwarding (i.e., forwarding >>> # packets without touching the TTL). This can be useful to hide >>> firewalls >>> # from traceroute and similar tools. >>> >>> But can it be disabled once added to kernel? It's no good as a default. >> >> >> It's controllable via sysctl once it's compiled into the kernel. If >> it's not compiled into the kernel, then the sysctl doesn't exist. > > > Is it the following? > net.inet.ip.stealth=0
Yeah, that's the one. -- Freddie Cash [email protected] _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "[email protected]"
