Tuning the Network

Language:

Table 2 Tuning Your Network Task Map

Task	Description	For Instructions
Disable the network routing daemon.	Limits access to systems by would-be network sniffers.	How to Enable Dynamic Routing on a Single-Interface System in Configuring an Oracle Solaris 11.4 System as a Router or a Load Balancer
Prevent the dissemination of information about the network topology.	Prevents the broadcast of packets.	How to Disable Broadcast Packet Forwarding
	Prevents responses to broadcast echo requests and multicast echo requests.	How to Disable Responses to Echo Requests
For systems that are gateways to other domains, such as a firewall or a VPN node, turn on strict source and destination multihoming.	Prevents packets that do not have the address of the gateway in their header from moving beyond the gateway.	How to Set Strict Multihoming
Prevent DOS attacks by controlling the number of incomplete system connections.	Limits the allowable number of incomplete TCP connections for a TCP listener.	How to Set Maximum Number of Incomplete TCP Connections
Prevent DOS attacks by controlling the number of permitted incoming connections.	Specifies the default maximum number of pending TCP connections for a TCP listener.	How to Set Maximum Number of Pending TCP Connections
Prevent ICMP redirection.	Removes indicators of the network topology.	How to Prevent ICMP Redirects
Return network parameters to their secure default values.	Increases security that was reduced by administrative actions.	How to Reset Network Parameters to Secure Values
Limit the number of concurrent processes for system services that are controlled by `inetd`.	Limits the number of a concurrent `inetd` process.	Modifying Services that are Controlled by inetd in Managing System Services in Oracle Solaris 11.4 Recommendations for Systems That Run inetd Based Services in Administering TCP/IP Networks, IPMP, and IP Tunnels in Oracle Solaris 11.4