diff --git a/lib/libc/gen/sysctl.3 b/lib/libc/gen/sysctl.3
index c5a7245a4c6b..f7df873a6a00 100644
--- a/lib/libc/gen/sysctl.3
+++ b/lib/libc/gen/sysctl.3
@@ -1,4 +1,4 @@
-.\"	$NetBSD: sysctl.3,v 1.79 2001/10/18 09:14:29 itojun Exp $
+.\"	$NetBSD: sysctl.3,v 1.80 2001/10/30 06:43:21 kml Exp $
 .\"
 .\" Copyright (c) 1993
 .\"	The Regents of the University of California.  All rights reserved.
@@ -680,6 +680,8 @@ The currently defined protocols and names are:
 .It ip	maxfragpacket	integer	yes
 .It icmp	maskrepl	integer	yes
 .It icmp	errppslimit	integer	yes
+.It icmp	rediraccept	integer	yes
+.It icmp	redirtimeout	integer	yes
 .It tcp	rfc1323	integer	yes
 .It tcp	sendspace	integer	yes
 .It tcp	recvspace	integer	yes
@@ -772,6 +774,17 @@ per second.
 ICMP error messages that exceeded the value are subject to rate limitation
 and will not go out from the node.
 Negative value disables rate limitation.
+.It Li icmp.rediraccept
+If set to non-zero, the host will accept ICMP redirect packets.
+Note that routers will never accept ICMP redirect packets,
+and the variable is meaningful on IP hosts only.
+.It Li icmp.redirtimeout
+The variable specifies lifetime of routing entries generated by incoming
+ICMP redirect.  This defaults to zero;  if the system is not running
+a routing daemon like 
+.Xr routed 8
+than this value can be set to remove the routes added by redirect.
+A reasonable value to use would be 600 seconds.
 .It Li tcp.rfc1323
 Returns 1 if RFC1323 extensions to TCP are enabled.
 .It Li tcp.sendspace
diff --git a/sbin/sysctl/sysctl.8 b/sbin/sysctl/sysctl.8
index d6b76a4ad7c9..9211498f7d0d 100644
--- a/sbin/sysctl/sysctl.8
+++ b/sbin/sysctl/sysctl.8
@@ -1,4 +1,4 @@
-.\"	$NetBSD: sysctl.8,v 1.68 2001/08/20 10:31:46 hubertf Exp $
+.\"	$NetBSD: sysctl.8,v 1.69 2001/10/30 06:43:55 kml Exp $
 .\"
 .\" Copyright (c) 1993
 .\"	The Regents of the University of California.  All rights reserved.
@@ -216,6 +216,8 @@ privilege can change the value.
 .It machdep.console_device	dev_t	no
 .It net.inet.icmp.maskrepl	integer	yes
 .It net.inet.icmp.errppslimit	integer	yes
+.It net.inet.icmp.rediraccept	integer	yes
+.It net.inet.icmp.redirtimeout	integer	yes
 .It net.inet.ip.allowsrcrt	integer	yes
 .It net.inet.ip.anonportmax	integer	yes
 .It net.inet.ip.anonportmin	integer	yes