The registry value entry EnableICMPRedirect was added to the template file in the HKEY_LOCAL_MACHINESystemCurrentControlSetServicesTcpipParameters registry key. The entry appears as MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes in the SCE. Internet Control Message Protocol (ICMP) redirects cause the stack to plumb host routes. These routes override the Open Shortest Path First (OSPF)?generated routes. Microsoft recommends to configure this setting to Not Defined for enterprise environments and to Disabled for high security environments.

[enable/disable]

(1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options!The entry appears as MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes in the SCE. (2) REG: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters!EnableICMPRedirect