From 9739bce6b23922810dbbc98286eba9581d50fa9f Mon Sep 17 00:00:00 2001
From: maxim <maxim@FreeBSD.org>
Date: Fri, 2 Jul 2004 15:47:47 +0000
Subject: [PATCH] Document net.inet.ip.process_options sysctl.

Improved by:	ru
Reviewed by:	andre
---
 share/man/man4/inet.4 | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/share/man/man4/inet.4 b/share/man/man4/inet.4
index b922bf91ca8..2f43436ad29 100644
--- a/share/man/man4/inet.4
+++ b/share/man/man4/inet.4
@@ -273,6 +273,21 @@ adaptation described above.
 .Pq ip.rtmaxcache
 Integer: trigger level of cached, unreferenced, protocol-cloned routes
 which initiates dynamic adaptation (default 128).
+.It Va ip.process_options
+Integer: control IP options processing.
+By setting this variable to 0, all IP options in the incoming packets
+will be ignored, and the packets will be passed unmodified.
+By setting to 1, IP options in the incoming packets will be processed
+accordingly.
+By setting to 2, an
+.Tn ICMP
+.Dq "prohibited by filter"
+message will be sent back in respose to incoming packets with IP options.
+Default is 1.
+This
+.Xr sysctl 8
+variable affects packets destined for a local host as well as packets
+forwarded to some other host.
 .El
 .Sh SEE ALSO
 .Xr ioctl 2 ,
-- 
2.45.2