Tuning the Network

Language:

Table 2-1 Tuning Your Network Task Map

Task	Description	For Instructions
Disable the network routing daemon.	Limits access to systems by would-be network sniffers.	How to Disable the Network Routing Daemon
Prevent the dissemination of information about the network topology.	Prevents the broadcast of packets.	How to Disable Broadcast Packet Forwarding
	Prevents responses to broadcast echo requests and multicast echo requests.	How to Disable Responses to Echo Requests
For systems that are gateways to other domains, such as a firewall or a VPN node, turn on strict source and destination multihoming.	Prevents packets that do not have the address of the gateway in their header from moving beyond the gateway.	How to Set Strict Multihoming
Prevent DOS attacks by controlling the number of incomplete system connections.	Limits the allowable number of incomplete TCP connections for a TCP listener.	How to Set Maximum Number of Incomplete TCP Connections
Prevent DOS attacks by controlling the number of permitted incoming connections.	Specifies the default maximum number of pending TCP connections for a TCP listener.	How to Set Maximum Number of Pending TCP Connections
Verify that strong random numbers are generated for initial TCP connections.	Complies with the sequence number generation value specified by RFC 6528.	How to Specify a Strong Random Number for Initial TCP Connection
Prevent ICMP redirection.	Removes indicators of the network topology.	How to Prevent ICMP Redirects
Return network parameters to their secure default values.	Increases security that was reduced by administrative actions.	How to Reset Network Parameters to Secure Values