Ensure IP forwarding is disabled

Information

Disable IP forwarding to prevent incoming packets from being forwarded.

Solution

Add net.ipv4.ip_forward=0 to /etc/sysctl.conf

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-7(12), CSCv6|9.2

Plugin: Unix

Control ID: 3a399632dba0a5a247bd95bc8bee881269558c68b70fe979f486d43a5107cb4a