Cheat Sheets

Network - No IP Source Routing

Description

Ensures that IP Source Routing is disabled

Tags

  • CCE-27037-1

Solution

echo 'net.ipv4.conf.all.accept_source_route' >/etc/sysctl.d/50-net.ipv4.conf.all.accept_source_route.conf && sysctl -p

Check Script: network-no-ip-src-routing.sh

if [[ $(/sbin/sysctl -n net.ipv4.conf.all.accept_source_route 2>/dev/null) == 0 ]]; then
	result_failed "net.ipv4.conf.all.accept_source_route is not 0"
fi