commit: d32173ea399cc37837985dec55134d1e0e2ebf72 Author: William Hubbs <williamh <AT> gentoo <DOT> org> AuthorDate: Tue Aug 30 03:59:10 2016 +0000 Commit: William Hubbs <williamh <AT> gentoo <DOT> org> CommitDate: Tue Aug 30 03:59:10 2016 +0000 URL: https://gitweb.gentoo.org/proj/baselayout.git/commit/?id=d32173ea
etc.Linux/sysctl.comf: disable rp_filter by default See https://lwn.net/Articles/578621/ X-Gentoo-Bug-URL: https://bugs.gentoo.org/show_bug.cgi?id=586210 etc.Linux/sysctl.conf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/etc.Linux/sysctl.conf b/etc.Linux/sysctl.conf index 08466bf..2f8b3b0 100644 --- a/etc.Linux/sysctl.conf +++ b/etc.Linux/sysctl.conf @@ -16,9 +16,9 @@ net.ipv4.ip_forward = 0 # Disable ECN #net.ipv4.tcp_ecn = 0 # Enables source route verification -net.ipv4.conf.default.rp_filter = 1 +#net.ipv4.conf.default.rp_filter = 1 # Enable reverse path -net.ipv4.conf.all.rp_filter = 1 +#net.ipv4.conf.all.rp_filter = 1 # Enable SYN cookies (yum!) # http://cr.yp.to/syncookies.html
