Page MenuHomeFreeBSD

Add net.inet.ip.source_address_validation

Authored by glebius on Nov 9 2021, 8:35 PM.
Referenced Files
Unknown Object (File)
Mon, Apr 1, 3:50 AM
Unknown Object (File)
Jan 25 2024, 5:20 AM
Unknown Object (File)
Jan 11 2024, 1:28 AM
Unknown Object (File)
Jan 3 2024, 1:07 AM
Unknown Object (File)
Dec 24 2023, 7:54 AM
Unknown Object (File)
Dec 22 2023, 10:55 PM
Unknown Object (File)
Dec 11 2023, 1:38 AM
Unknown Object (File)
Dec 5 2023, 8:47 AM



Drop packets arriving from the network that have our source IP
address. If maliciously crafted they can create evil effects
like an RST exchange between two of our listening TCP ports.
Such packets just can't be legitimate. Enable the tunable
by default. Long time due for a modern Internet host.

Diff Detail

rG FreeBSD src repository
Lint Not Applicable
Tests Not Applicable

Event Timeline

This revision is now accepted and ready to land.Nov 9 2021, 9:47 PM
This revision now requires review to proceed.Nov 11 2021, 12:30 AM

Thank you for including the fib.

This revision is now accepted and ready to land.Nov 11 2021, 7:55 AM
This revision was automatically updated to reflect the committed changes.