~mdw
/
firewall
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (from parent 1:
65537cb
)
bookends.m4: Allow redirects to (non-routing) hosts.
author
Mark Wooding
<mdw@distorted.org.uk>
Mon, 23 Apr 2012 00:20:10 +0000
(
01:20
+0100)
committer
Mark Wooding
<mdw@distorted.org.uk>
Mon, 23 Apr 2012 00:20:10 +0000
(
01:20
+0100)
bookends.m4
patch
|
blob
|
blame
|
history
diff --git
a/bookends.m4
b/bookends.m4
index
9757a38
..
807e8d9
100644
(file)
--- a/
bookends.m4
+++ b/
bookends.m4
@@
-115,7
+115,8
@@
esac
setopt ip_forward $forward
setdevopt forwarding $forward
for i in \
setopt ip_forward $forward
setdevopt forwarding $forward
for i in \
- accept_ra accept_ra_defrtr accept_ra_pinfo accept_ra_info_max_plen
+ accept_ra accept_ra_defrtr accept_ra_pinfo accept_ra_info_max_plen \
+ accept_redirects
do
setdevopt $i $host
done
do
setdevopt $i $host
done
@@
-153,7
+154,7
@@
setdevopt log_martians 0
## Turn off things which can mess with our routing decisions.
setdevopt accept_source_route 0
## Turn off things which can mess with our routing decisions.
setdevopt accept_source_route 0
-setdevopt
accept_redirects 0
+setdevopt
secure_redirects 1
## If we're maent to stop the firewall, then now is the time to do it.
$exit_after_clearing
## If we're maent to stop the firewall, then now is the time to do it.
$exit_after_clearing