[PATCH] ip: update the description of rp_filter in ip-sysctl.txt

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Shan Wei <shanwei@cn.fujitsu.com>
To: David Miller <davem@davemloft.net>, shemminger@vyatta.com
Cc: "netdev@vger.kernel.org" <netdev@vger.kernel.org>, rdunlap@xenotime.net
Subject: [PATCH] ip: update the description of rp_filter in ip-sysctl.txt
Date: Tue, 01 Dec 2009 15:04:32 +0800	[thread overview]
Message-ID: <4B14C000.3090608@cn.fujitsu.com> (raw)

The commit 27fed4175acf81ddd91d9a4ee2fd298981f60295
（ip: fix logic of reverse path filter sysctl）has changed the logic of rp_filter.
The document about rp_filter is out of date. Now, setting conf/all/rp_filte with 0 
can also enable source validation.  

Update the document according to the commit.

Signed-off-by: Shan Wei <shanwei@cn.fujitsu.com>
---
 Documentation/networking/ip-sysctl.txt |    4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt
index fbe427a..5dcc067 100644
--- a/Documentation/networking/ip-sysctl.txt
+++ b/Documentation/networking/ip-sysctl.txt
@@ -738,8 +738,8 @@ rp_filter - INTEGER
 	to prevent IP spoofing from DDos attacks. If using asymmetric routing
 	or other complicated routing, then loose mode is recommended.
 
-	conf/all/rp_filter must also be set to non-zero to do source validation
-	on the interface
+	The max value from conf/{all,interface}/rp_filter is used
+	when doing source validation on the {interface}.
 
 	Default value is 0. Note that some distributions enable it
 	in startup scripts.
-- 
1.6.3.3

next             reply	other threads:[~2009-12-01  7:05 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2009-12-01  7:04 Shan Wei [this message]
2009-12-02 23:39 ` [PATCH] ip: update the description of rp_filter in ip-sysctl.txt David Miller

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:fbe427a dfblob:5dcc067 )
 OR (
bs:"[PATCH] ip: update the description of rp_filter in ip-sysctl.txt" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=4B14C000.3090608@cn.fujitsu.com \
    --to=shanwei@cn.fujitsu.com \
    --cc=davem@davemloft.net \
    --cc=netdev@vger.kernel.org \
    --cc=rdunlap@xenotime.net \
    --cc=shemminger@vyatta.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.