On Wed, 2002-05-22 at 11:16, Ray Olszewski wrote: > At 10:39 AM 5/22/02 -0700, Mike Noyes wrote: > >[...] > >I think you can stop logging of TOS redirects in network.config by > >changing the option below to yes. This may open up a possible security > >hole. > > > >ALLIF_ACCEPT_REDIRECTS=NO > > If this changes the kernel flag I think it does, then it does more than > suppress logging. It tells the kernel to change its substantive behavior, > to accept the actual redirect instructions.
Ray, You're correct. s/stop logging of TOS/allow icmp/ > I'm very rusty on this stuff, > but I bet there was some spoofing problem that caused most of the world ... > with this ISP an exception ... to move away from using redirects, at least > for updating edge routers. That's my fuzzy recollection of the situation also. -- Mike Noyes <[EMAIL PROTECTED]> http://sourceforge.net/users/mhnoyes/ http://leaf-project.org/ _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
