From eeaf1a83a0542acf6b86362db18772def8d2d743 Mon Sep 17 00:00:00 2001
From: Bertrand Jacquin <bertrand@jacquin.bzh>
Date: Mon, 25 Nov 2019 00:02:40 +0000
Subject: factory-default: Define accept_local sysctl

---
 factory-default/sys-apps/baselayout/etc/sysctl.conf | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'factory-default')

diff --git a/factory-default/sys-apps/baselayout/etc/sysctl.conf b/factory-default/sys-apps/baselayout/etc/sysctl.conf
index 7a328896..b73624d8 100644
--- a/factory-default/sys-apps/baselayout/etc/sysctl.conf
+++ b/factory-default/sys-apps/baselayout/etc/sysctl.conf
@@ -133,6 +133,10 @@ net.ipv6.conf.default.accept_source_route = 0
 net.ipv4.conf.all.rp_filter = 1
 net.ipv4.conf.default.rp_filter = 1
 
+# Deny packets with local source addresses
+net.ipv4.conf.all.accept_local = 0
+net.ipv4.conf.default.accept_local = 0
+
 # Log bad packet
 net.ipv4.conf.all.log_martians = 1
 net.ipv4.conf.default.log_martians = 1
-- 
cgit v1.2.3