From 4bc37f9836fb193af285f8712dd39bcd6e215c32 Mon Sep 17 00:00:00 2001 From: Maxim Konovalov Date: Fri, 24 Sep 2004 12:18:40 +0000 Subject: [PATCH] o Turn net.inet.ip.check_interface sysctl off by default. When net.inet.ip.check_interface was MFCed to RELENG_4 3+ years ago in rev. 1.130.2.17 ip_input.c it was 1 by default but shortly changed to 0 (accidently?) in rev. 1.130.2.20 in RELENG_4 only. Among with the fact this knob is not documented it breaks POLA especially in bridge environment. OK'ed by: andre Reviewed by: -current --- sys/netinet/ip_input.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sys/netinet/ip_input.c b/sys/netinet/ip_input.c index 1bc4002aaf1..223866f75e1 100644 --- a/sys/netinet/ip_input.c +++ b/sys/netinet/ip_input.c @@ -148,7 +148,7 @@ SYSCTL_INT(_net_inet_ip, OID_AUTO, random_id, CTLFLAG_RW, * to the loopback interface instead of the interface where the * packets for those addresses are received. */ -static int ip_checkinterface = 1; +static int ip_checkinterface = 0; SYSCTL_INT(_net_inet_ip, OID_AUTO, check_interface, CTLFLAG_RW, &ip_checkinterface, 0, "Verify packet arrives on correct interface"); -- 2.45.2