An XCCDF Group - A logical subset of the XCCDF Benchmark
sysctl
net.ipv4.conf.all.accept_redirects
$ sudo sysctl -w net.ipv4.conf.all.accept_redirects=0
/etc/sysctl.d
net.ipv4.conf.all.accept_redirects = 0
net.ipv4.conf.all.accept_source_route
$ sudo sysctl -w net.ipv4.conf.all.accept_source_route=0
net.ipv4.conf.all.accept_source_route = 0
net.ipv4.conf.all.rp_filter
$ sudo sysctl -w net.ipv4.conf.all.rp_filter=1
net.ipv4.conf.all.rp_filter = 1
net.ipv4.conf.all.secure_redirects
$ sudo sysctl -w net.ipv4.conf.all.secure_redirects=0
net.ipv4.conf.all.secure_redirects = 0
net.ipv4.conf.default.accept_source_route
$ sudo sysctl -w net.ipv4.conf.default.accept_source_route=0
net.ipv4.conf.default.accept_source_route = 0
net.ipv4.conf.default.rp_filter
$ sudo sysctl -w net.ipv4.conf.default.rp_filter=1
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.default.secure_redirects
$ sudo sysctl -w net.ipv4.conf.default.secure_redirects=0
net.ipv4.conf.default.secure_redirects = 0
net.ipv4.icmp_echo_ignore_broadcasts
$ sudo sysctl -w net.ipv4.icmp_echo_ignore_broadcasts=1
net.ipv4.icmp_echo_ignore_broadcasts = 1
net.ipv4.conf.all.send_redirects
$ sudo sysctl -w net.ipv4.conf.all.send_redirects=0
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.default.send_redirects
$ sudo sysctl -w net.ipv4.conf.default.send_redirects=0
net.ipv4.conf.default.send_redirects = 0
net.ipv4.ip_forward
$ sudo sysctl -w net.ipv4.ip_forward=0
net.ipv4.ip_forward = 0