From a4124843cd32850a4a47795e3cf13a0ed0a051ea Mon Sep 17 00:00:00 2001
From: Kolan Sh <backbone@backbone.ws>
Date: Mon, 20 Oct 2014 10:07:01 +0400
Subject: [PATCH] Invalidate / discard packets when the route for outbound
 traffic differs from the route of incoming traffic.

---
 sysctl.d/net.conf | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/sysctl.d/net.conf b/sysctl.d/net.conf
index f42c797..4fb1bf8 100644
--- a/sysctl.d/net.conf
+++ b/sysctl.d/net.conf
@@ -9,5 +9,7 @@ net.ipv4.conf.default.accept_redirects = 0
 net.ipv4.conf.all.secure_redirects = 1
 # forbid sender to define route (default = 0)
 net.ipv4.conf.default.accept_source_route = 0
-
-
+# Invalidate / discard packets when the route for outbound
+# traffic differs from the route of incoming traffic
+net.ipv4.conf.default.rp_filter = 1
+net.ipv4.conf.all.rp_filter = 1