* echo 0 > send_redirects broken?
@ 2003-09-04 21:04 Dax Kelson
0 siblings, 0 replies; only message in thread
From: Dax Kelson @ 2003-09-04 21:04 UTC (permalink / raw)
To: netdev
[-- Attachment #1: Type: text/plain, Size: 738 bytes --]
192.168.0.0/24
.9 .10 .254
==|======|=======|====
[A] [B] [Router]
Hosts A and B running RHL9 with kernel 2.4.20-8.
1. Start pinging the .254 IP from host A
2. Enable ip_forwarding on host B
3. Run arpspoof on host B to poison the arp cache on host A and the
router
4. On host B Turn off icmp redirects with the command:
echo 0 > /proc/sys/net/ipv4/conf/eth0/send_redirects
Problem: Host B *still* sends ICMP redirects. Initially many redirects
are sent, then the rate at which ICMP redirects are sent slows down
until redirects only trickle out every few minutes.
In older 2.4 kernels (2.4.9 for example) this did not happen. Turning
off ICMP redirects really turned them off.
Comments?
[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-09-04 21:04 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-09-04 21:04 echo 0 > send_redirects broken? Dax Kelson
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).