From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 3D0351381F3 for ; Thu, 10 Oct 2013 06:26:44 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6B9E2E09AF; Thu, 10 Oct 2013 06:26:38 +0000 (UTC) Received: from postler.lichtfels.com (postler.lichtfels.com [78.46.92.195]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 555FDE07ED for ; Thu, 10 Oct 2013 06:26:36 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by postler.lichtfels.com (Postfix) with ESMTP id E48A2123ED for ; Thu, 10 Oct 2013 08:26:34 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=xunil.at; s=mailout; t=1381386394; bh=3mknuNq5oHVOIeZ0BY8DuVotJ14PXYPbl2xI0GzwQ8E=; h=Date:From:Reply-To:To:Subject:References:In-Reply-To; b=nqy7doSKK/+vFgBJKtGMkwWgqn49WmMmzn+MmcFodv3KJiiNUdiULhFudMiU0/2b5 j1p2Qoo9Ti6upKvbwRZq4ipcJFzVtmYLadTewTGs72CpNfvovaj1aUMXnWLnPY2Y50 y1rjPuxMrXKF0GXEtdzX6dnRKyWVXzDj5YSbahvY= Received: from postler.lichtfels.com ([127.0.0.1]) by localhost (postler.lichtfels.com [127.0.0.1]) (amavisd-maia, port 10024) with LMTP id 16916-10 for ; Thu, 10 Oct 2013 08:26:32 +0200 (CEST) Received: from [172.32.99.26] (mail.oops.co.at [213.129.238.225]) by postler.lichtfels.com (Postfix) with ESMTPA id 95628123DF for ; Thu, 10 Oct 2013 08:26:32 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=xunil.at; s=mailout; t=1381386392; bh=3mknuNq5oHVOIeZ0BY8DuVotJ14PXYPbl2xI0GzwQ8E=; h=Date:From:Reply-To:To:Subject:References:In-Reply-To; b=zP/zZs3eSuls5CEoCLmyLD2pjiUX7R4U2dxmkys01vtM3UUZI8ffq0V+wvu+9uQBH T9PdqUNP1NyWg/lgczQxH5Shc6dYunhCAhsGkv0B9jnBHrHGFzQbiyJHlzZkBpsqtb 9/kdScinRL58qRgPDB/zgfCOl7SamsDAeElrK2u0= Message-ID: <52564898.2040105@xunil.at> Date: Thu, 10 Oct 2013 08:26:32 +0200 From: "Stefan G. Weichinger" Organization: oops! User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] what about my routing here ... References: <5255350A.8020203@xunil.at> In-Reply-To: X-Enigmail-Version: 1.5.2 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Scanned: Maia Mailguard 1.0.2c X-Archives-Salt: 6687c6aa-33fd-4def-a4e2-5463393b7b76 X-Archives-Hash: 36cebd237002245b7ee578a586f1db89 Am 10.10.2013 06:45, schrieb Adam Carter: > There might have been a icmp redirect from 10.96.25.1 telling ipfire that > there's a better way to get to that network, and its via 10.96.25.2. > > On my system it seems to be off by default (I havent set it in > /etc/sysctl.conf) which makes sense as redirects can be used for MITM > attacks. > $ cat /proc/sys/net/ipv4/conf/all/accept_redirects > 0 So I would have to check that on the router? Or both? Just will check both, sure ... Could this lead to mislead keepalive packets from libvirtd? Maybe I should ask their network-admins for more details ... huge company, unknown structures ;-) Thanks, Stefan