Disable send_redirects or NETKEY

disable-sendredirectsDuring the process of a VPN client configuration with xl2tpd and openswan ipsec verify command threw the following error:

Disable /proc/sys/net/ipv4/conf/*/send_redirects or NETKEY will act on or cause sending of bogus ICMP redirects!

To fix this we need to disable send_redirects and save changes in /etc/sysctl.conf so they will be permanent across reboots. Here is how:

Disable send_redirects and accept_redirects:


To make it permanent on reboot, in your sysctl.conf place the below lines
Be sociable 🙂 Share!

Comments/Коментарі/Комментарии