This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.
The remote host has IP forwarding enabled.
The remote host has IP forwarding enabled. An attacker can exploit
this to route packets through the host and potentially bypass some
firewalls / routers / NAC filtering.
Unless the remote host is a router, it is recommended that you disable
On Linux, you can disable IP forwarding by doing :
echo 0 > /proc/sys/net/ipv4/ip_forward
On Windows, set the key 'IPEnableRouter' to 0 under
On Mac OS X, you can disable IP forwarding by executing the command :
sysctl -w net.inet.ip.forwarding=0
For other systems, check with your vendor.
Risk factor :
Medium / CVSS Base Score : 5.8