Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

enable rp filter to block IPv4 traffic to localhost not originating from localhost #41

Open
adrelanos opened this issue Nov 8, 2017 · 4 comments · May be fixed by #43
Open

enable rp filter to block IPv4 traffic to localhost not originating from localhost #41

adrelanos opened this issue Nov 8, 2017 · 4 comments · May be fixed by #43

Comments

@adrelanos
Copy link
Owner

as per #39

@adrelanos adrelanos changed the title enable rp filter to block traffic to localhost not originating from localhost enable rp filter to block IPv4 traffic to localhost not originating from localhost Nov 8, 2017
@ghost ghost linked a pull request Nov 9, 2017 that will close this issue
@marmarek
Copy link

marmarek commented Nov 9, 2017

Well, rp_filter is enabled in Linux by default. Not sure what is @adrelanos position about explicit setting this anyway.

@ghost
Copy link

ghost commented Nov 9, 2017

@marmarek according to https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt

Default value is 0. Note that some distributions enable it
in startup scripts.

@adrelanos
Copy link
Owner Author

On Qubes Debian VMs.

cat /proc/sys/net/ipv4/conf/all/rp_filter

0

Looks disabled?

@marmarek
Copy link

Ah, indeed, sorry for the noise.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants