On Wed, Jul 10, 2002 at 07:11:21PM +0200, Jan Humme wrote: > I am developing an application that will eventually run on a PC with two > ethernet cards; unfortunately the development PC that I use has only one > ethernet card (eth0) and no available slots (except for one that I need for > another purpose). > > Doesn't matter, during the development I can have both applications use eth0 > instead, if I can only stop the icmp redirect messages that the kernel sends > back to the source, whenever it finds out that it is forwarding a packet via > the same eth0 interface on which it came in. > > Of course, I can choke the icmp redirect message using iptables, but is there > a better (proper) way, to prevent the message from being generated?
On the sending host: # echo 0 > /proc/sys/net/ipv4/conf/*/send_redirects On the receiving host: # echo 0 > /proc/sys/net/ipv4/conf/*/accept_redirects should do it. Ramin > > Jan Humme.
