From 7ea8d3ff357e278ba047a18a0dcc4bd434017c79 Mon Sep 17 00:00:00 2001
From: Maximilian Hils <git@maximilianhils.com>
Date: Mon, 8 Sep 2014 18:35:52 +0200
Subject: [PATCH] add note about icmp redirects, fix #255

---
 doc-src/transparent/linux.html | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/doc-src/transparent/linux.html b/doc-src/transparent/linux.html
index 96b7132a1..7c01931db 100644
--- a/doc-src/transparent/linux.html
+++ b/doc-src/transparent/linux.html
@@ -15,6 +15,16 @@ achieve transparent mode.
 
     </li>
 
+    <li> If your target machine is on the same physical network and you configured it to use a custom gateway,
+    disable ICMP redirects:
+
+    <pre class="terminal">echo 0 | sudo tee /proc/sys/net/ipv4/conf/*/send_redirects</pre>
+
+    You may also want to consider enabling this permanently in
+    <b>/etc/sysctl.conf</b> as demonstrated <a href="http://unix.stackexchange.com/a/58081">here</a>.
+
+    </li>
+
     <li> Create an iptables ruleset that redirects the desired traffic to the
     mitmproxy port. Details will differ according to your setup, but the
     ruleset should look something like this: