<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman, new york, times, serif;font-size:12pt"><DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif">Chrs,</DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"> </DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif">You can also set those parameters permanently via /etc/sysctl.conf by passing either 0 or 1 to the options. Read up on man sysctl. It is very short and to the point.</DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"> </DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif">Rgds,</DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif">Gbenga</DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"> </DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"> </DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif">----------</DIV>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"><BR>
<DIV style="FONT-SIZE: 12pt; FONT-FAMILY: times new roman, new york, times, serif"><FONT size=-1><FONT face=Arial>Absolutely,<BR><BR>This script resides in my /root/bin.<BR><BR>I call it disable_send_accept_redirects<BR>------<BR>#!/bin/bash<BR><BR># Disable send redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/all/send_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/default/send_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/eth0/send_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/eth1/send_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/lo/send_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/ppp0/send_redirects<BR><BR># Disable accept redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/all/accept_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/default/accept_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/eth0/accept_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/eth1/accept_redirects<BR>echo 0 >
/proc/sys/net/ipv4/conf/lo/accept_redirects<BR>echo 0 > /proc/sys/net/ipv4/conf/ppp0/accept_redirects<BR><BR>-----<BR><BR>I have also added the following line to my /etc/rc.local startup scipt:<BR>/root/bin/disable_send_accept_redirects<BR><BR>So that it is called on startup. I am using FC7 - on your system the startup script location may be different. <BR><BR>As you can see I disable both types of redirects for ALL interface - I am not sure if that is correct or wise but it seems to work for me ; )<BR><BR>I'm new to linux too, welcome to the club.<BR></FONT></FONT><PRE class=moz-signature>Regards,
Arjun Datta
</PRE></DIV></DIV></div><br>
<hr size=1>
Sent from <a
href="http://us.rd.yahoo.com/mailuk/taglines/isp/control/*http://us.rd.yahoo.com/evt=52419/*http://uk.docs.yahoo.com/nowyoucan.html" target=_blank>Yahoo! Mail</a>.
<br>
The World 's Favourite Email.</body></html>