RE: Best way to filter "Nachi pings"?
From: Francis A. Vidal (francisv-sender-21ebc3_at_irc.dagupan.com)
Date: 10/27/03
- Previous message: Colin Percival: "RE: Best way to filter "Nachi pings"?"
- In reply to: Colin Percival: "RE: Best way to filter "Nachi pings"?"
- Next in thread: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <freebsd-security@freebsd.org> Date: Mon, 27 Oct 2003 16:22:22 +0800
It's also dependent on ICMP time exceeded.
-----Original Message-----
From: Colin Percival [mailto:colin.percival@wadham.ox.ac.uk]
Sent: Monday, October 27, 2003 4:11 PM
To: Francis A. Vidal; freebsd-security@freebsd.org
Subject: RE: Best way to filter "Nachi pings"?
At 16:06 27/10/2003 +0800, Francis A. Vidal wrote:
>Wouldn't it break stuff like traceroute?
Traceroute is fine -- it uses UDP packets. Tracert, on the other hand,
uses ICMP echo request packets, and it suffers. I'm currently on a
university network, and when there are connectivity issues (which seems to
be quite often) I get very annoyed with the ICMP filtering.
Colin Percival
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Colin Percival: "RE: Best way to filter "Nachi pings"?"
- In reply to: Colin Percival: "RE: Best way to filter "Nachi pings"?"
- Next in thread: Kris Kennaway: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
