File tree 2 files changed +3
-3
lines changed
2 files changed +3
-3
lines changed Original file line number Diff line number Diff line change @@ -110,8 +110,8 @@ Networking:
110110- Respond to ARP requests only if the target IP address is on-link,
111111 preventing some IP spoofing attacks.
112112
113- - Optional - Drop gratuitous ARP packets to prevent ARP cache poisoning
114- via man-in-the-middle and denial-of-service attacks.
113+ - Drop gratuitous ARP packets to prevent ARP cache poisoning via
114+ man-in-the-middle and denial-of-service attacks.
115115
116116- Ignore ICMP echo requests to prevent clock fingerprinting and Smurf attacks.
117117
Original file line number Diff line number Diff line change @@ -482,7 +482,7 @@ net.ipv4.conf.*.arp_ignore=2
482482## https://patchwork.ozlabs.org/project/netdev/patch/
[email protected] /
483483## https://www.practicalnetworking.net/series/arp/gratuitous-arp/
484484##
485- # net.ipv4.conf.*.drop_gratuitous_arp=1
485+ net.ipv4.conf.*.drop_gratuitous_arp=1
486486
487487## Ignore ICMP echo requests.
488488## Prevents clock fingerprinting through ICMP timestamps and Smurf attacks.
You can’t perform that action at this time.
0 commit comments