1
0
mirror of https://github.com/tommytran732/Linux-Setup-Scripts synced 2024-11-25 02:31:34 -05:00

Compare commits

...

2 Commits

Author SHA1 Message Date
b219184e6d
Change comment 2024-06-06 15:21:13 -07:00
dd65ecf897
Ignore Bogus ICMP responses 2024-06-06 14:03:28 -07:00
2 changed files with 7 additions and 1 deletions

View File

@ -74,6 +74,9 @@ net.ipv4.conf.*.rp_filter = 1
net.ipv4.icmp_echo_ignore_all = 0 net.ipv4.icmp_echo_ignore_all = 0
net.ipv6.icmp.echo_ignore_all = 0 net.ipv6.icmp.echo_ignore_all = 0
# Ignore Bogus ICMP responses
net.ipv4.icmp_ignore_bogus_error_responses = 1
# Enable IP Forwarding # Enable IP Forwarding
# Almost all of my servers run Docker anyways, and Docker absolutely requires this. # Almost all of my servers run Docker anyways, and Docker absolutely requires this.
net.ipv4.ip_forward = 1 net.ipv4.ip_forward = 1

View File

@ -4,7 +4,7 @@ dev.tty.ldisc_autoload = 0
# https://access.redhat.com/solutions/1985633 # https://access.redhat.com/solutions/1985633
# Seems dangerous. # Seems dangerous.
# Roseta need this though, so if you use it comment this out. # Roseta need this though, so if you use it change it to 1
fs.binfmt_misc.status = 0 fs.binfmt_misc.status = 0
# https://madaidans-insecurities.github.io/guides/linux-hardening.html#sysctl-userspace # https://madaidans-insecurities.github.io/guides/linux-hardening.html#sysctl-userspace
@ -73,6 +73,9 @@ net.ipv4.conf.*.rp_filter = 1
net.ipv4.icmp_echo_ignore_all = 1 net.ipv4.icmp_echo_ignore_all = 1
net.ipv6.icmp.echo_ignore_all = 1 net.ipv6.icmp.echo_ignore_all = 1
# Ignore Bogus ICMP responses
net.ipv4.icmp_ignore_bogus_error_responses = 1
# Enable IP Forwarding # Enable IP Forwarding
# Needed for VM networking and whatnot. # Needed for VM networking and whatnot.
net.ipv4.ip_forward = 1 net.ipv4.ip_forward = 1