ICMP redirect messages are used by routers to inform hosts that a more direct route exists for a particular destination. These messages modify the host's route table and are unauthenticated. An illicit ICMP redirect message could result in a man-in-the-middle attack.
This feature of the IPv4 protocol has few legitimate uses. It should be disabled unless absolutely required.
Check
Verify RHEL 9 will not accept IPv4 ICMP redirect messages.
Check the value of the all "accept_redirects" variables with the following command:
$ sudo sysctl net.ipv4.conf.all.accept_redirects
net.ipv4.conf.all.accept_redirects = 0
If the returned line does not have a value of "0", a line is not returned, or the line is commented out, this is a finding.
Check that the configuration files are present to enable this network parameter.