Documentation: ip-sysctl.txt: clarify secure_redirects

author Eric Garver <e@erig.me>

Thu, 26 May 2016 16:28:05 +0000 (12:28 -0400)

committer David S. Miller <davem@davemloft.net>

Mon, 30 May 2016 05:40:53 +0000 (22:40 -0700)
author Eric Garver <e@erig.me>
Thu, 26 May 2016 16:28:05 +0000 (12:28 -0400)
committer David S. Miller <davem@davemloft.net>
Mon, 30 May 2016 05:40:53 +0000 (22:40 -0700)
diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt

index 6c7f365..9ae9293 100644 (file)
--- a/Documentation/networking/ip-sysctl.txt
+++ b/Documentation/networking/ip-sysctl.txt
@@ -1036,15 +1036,17 @@ proxy_arp_pvlan - BOOLEAN
  
  shared_media - BOOLEAN
         Send(router) or accept(host) RFC1620 shared media redirects.
-       Overrides ip_secure_redirects.
+       Overrides secure_redirects.
         shared_media for the interface will be enabled if at least one of
         conf/{all,interface}/shared_media is set to TRUE,
         it will be disabled otherwise
         default TRUE
  
  secure_redirects - BOOLEAN
-       Accept ICMP redirect messages only for gateways,
-       listed in default gateway list.
+       Accept ICMP redirect messages only to gateways listed in the
+       interface's current gateway list. Even if disabled, RFC1122 redirect
+       rules still apply.
+       Overridden by shared_media.
         secure_redirects for the interface will be enabled if at least one of
         conf/{all,interface}/secure_redirects is set to TRUE,
         it will be disabled otherwise
author	Eric Garver <e@erig.me>
	Thu, 26 May 2016 16:28:05 +0000 (12:28 -0400)
committer	David S. Miller <davem@davemloft.net>
	Mon, 30 May 2016 05:40:53 +0000 (22:40 -0700)