- Connect to the Authentication Manager server via SSH or a direct connection.
- Login as rsaadmin.
- Change to the root user
- When prompted, enter the rsaadmin password.
- Open /etc/sysctl.conf in a text editor:
- Add the following line (net.ipv4.icmp_echo_ignore_all = 1), shown in bold below the line for net.ipv4.conf.all.promote_secondaries = 1:
# # Disable response to broadcasts.
# You don't want yourself becoming a Smurf amplifier.
net.ipv4.icmp_echo_ignore_broadcasts = 1
# enable route verification on all interfaces
net.ipv4.conf.all.rp_filter = 1
# enable ipV6 forwarding
#net.ipv6.conf.all.forwarding = 1
# increase the number of possible inotify(7) watches
fs.inotify.max_user_watches = 65536
# avoid deleting secondary IPs on deleting the primary IP
net.ipv4.conf.default.promote_secondaries = 1
net.ipv4.conf.all.promote_secondaries = 1
net.ipv4.icmp_echo_ignore_all = 1
- Press [ESC[ and save and close the file:
- Edits to /etc/sysctl.conf will take affect immediately by running sysctl -p, and on reboot of the Autehntication Manager server.
sysctl -p sysctl.conf