#!/bin/sh
# Start/stop/restart my some network kernel parameters.
#

start() {
	echo "enable tcp_syncookies"
	echo 1 > /proc/sys/net/ipv4/tcp_syncookies

	echo "disable accept_redirects"
	for i in /proc/sys/net/ipv4/conf/*/accept_redirects; do
		echo 0 > $i
	done

	echo "disable accept_source_route"
	for i in /proc/sys/net/ipv4/conf/*/accept_source_route; do
		echo 0 > $i
	done

	echo "enable rp_filter"
	for i in /proc/sys/net/ipv4/conf/*/rp_filter; do
		echo 1 > $i
	done
}

stop() {
	echo "disable tcp_syncookies"
	echo 0 > /proc/sys/net/ipv4/tcp_syncookies

	echo "enable accept_redirects"
	for i in /proc/sys/net/ipv4/conf/*/accept_redirects; do
		echo 1 > $i
	done

	echo "enable accept_source_route"
	for i in /proc/sys/net/ipv4/conf/*/accept_source_route; do
		echo 1 > $i
	done

	echo "disable rp_filter"
	for i in /proc/sys/net/ipv4/conf/*/rp_filter; do
		echo 0 > $i
	done
}


case "$1" in
'start')
	start
	;;
'stop')
	stop
	;;
'restart')
	stop
	start
	;;
*)
	echo "usage $0 start|stop|restart"
esac