From a2bd23cad5fe516cc3c297617d9bd3c187bfae92 Mon Sep 17 00:00:00 2001
From: Davide Gardenal <davide.gardenal@huawei.com>
Date: Thu, 17 Feb 2022 17:12:29 +0100
Subject: [PATCH] oniro-sysctl: add sysctl kernel setting

Add option to not send ICMP redirects messages.

Signed-off-by: Davide Gardenal <davide.gardenal@huawei.com>
---
 .../recipes-core/oniro-sysctl/oniro-sysctl/oniro-net-ipv4.conf | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/meta-oniro-core/recipes-core/oniro-sysctl/oniro-sysctl/oniro-net-ipv4.conf b/meta-oniro-core/recipes-core/oniro-sysctl/oniro-sysctl/oniro-net-ipv4.conf
index 800dba2c..db6ba826 100644
--- a/meta-oniro-core/recipes-core/oniro-sysctl/oniro-sysctl/oniro-net-ipv4.conf
+++ b/meta-oniro-core/recipes-core/oniro-sysctl/oniro-sysctl/oniro-net-ipv4.conf
@@ -9,6 +9,9 @@ net.ipv4.conf.all.rp_filter = 1
 # Do not accept ICMP redirect messages
 net.ipv4.conf.default.accept_redirects = 0
 
+# Do not send ICMP redirect messages
+net.ipv4.conf.all.send_redirects = 0
+
 # Do not accept packets with SRR option.
 net.ipv4.conf.default.accept_source_route = 0
 
-- 
GitLab