[lug] making ping not respond

dan radom dan at radom.org
Sat Feb 9 21:49:23 MST 2002


you should really consider switching to iptables.  it's statefullness allows you to allow in only established and related packets, among many other nifty features.  it in itself is worth the upgrade to 2.4.

dan

* Timothy C. Klein (teece at silverklein.net) wrote:
> Am I just confused, or isn't blocking all ICMP packets *way* too broad?  I
> thought the firewall HOWTO mentioned that many ICMP packets are
> absolutely essential, and your networking will function poorly if they
> are all turned off?
> 
> Tim
> 
> * Richard Fifarek (rfifarek at silug.org) wrote:
> > Simple example:
> > 
> > ipchains -A input -p icmp -j DENY
> > ipchains -A input -p igmp -j DENY
> > 
> > To test, start a ping from a remote machine, apply the rules and see if 
> > the ping stops.
> > 
> > On Sat, 9 Feb 2002, qqq1one @yahoo.com wrote:
> > 
> > > I thought I my ipchains ruleset was set up to make my box not respond
> > > to external pings, but it does anyway.
> > > 
> > > I'm still trying to figure out how this is done.  Am I totally
> > > confused, or can ipchains do this?  TIA.
> > > 
> > > __________________________________________________
> > > Do You Yahoo!?
> > > Send FREE Valentine eCards with Yahoo! Greetings!
> > > http://greetings.yahoo.com
> > > _______________________________________________
> > > Web Page:  http://lug.boulder.co.us
> > > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> > > 
> > 
> > 	     -----------------------------------------------------
> > 	     Richard H. Fifarek	       		rfifarek at silug.org
> >              -----------------------------------------------------
> > 
> > _______________________________________________
> > Web Page:  http://lug.boulder.co.us
> > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> --
> ==============================================
> == Timothy Klein || teece at silverklein.net   ==
> == ---------------------------------------- ==
> == "Hello, World" 17 Errors, 31 Warnings... ==
> ==============================================
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug



More information about the LUG mailing list