Mikaela/shell-things
1
0
Fork 0
mirror of https://gitea.blesmrt.net/mikaela/shell-things.git synced 2026-02-27 21:28:09 +01:00
Code Issues Projects Releases Wiki Activity

sysctl.d: add 60-airsnitch.conf to drop unicast IP packets in L2 {broad,multi}cast frames

Browse Source
This commit is contained in:
Aminda Suomalainen 2026-02-27 12:50:11 +02:00
parent 7bc2e9c8bc
commit 8ea033ed80
Signed by: Mikaela
GPG Key ID: 99392F62BAE30723
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
etc/sysctl.d/60-airsnitch.conf Normal file
View File

@ -0,0 +1,10 @@
# 2026-02-27 https://github.com/vanhoefm/airsnitch/blob/main/README.md#id-defense-filter-bcast
# Client operating systems should by default drop unicast IP packets in layer
# 2 broadcast/multicast frames.
net.ipv4.conf.all.drop_unicast_in_l2_multicast = 1
net.ipv6.conf.all.drop_unicast_in_l2_multicast = 1
# "legacy" interface names likely existing on my system
net.ipv4.conf.eth0.drop_unicast_in_l2_multicast = 1
net.ipv6.conf.eth0.drop_unicast_in_l2_multicast = 1
net.ipv4.conf.wlan0.drop_unicast_in_l2_multicast = 1
net.ipv6.conf.wlan0.drop_unicast_in_l2_multicast = 1