Re: Best way to filter "Nachi pings"?
From: Andy Farkas (andyf_at_speednet.com.au)
Date: 10/30/03
- Previous message: Wolfgang Kess: "Re: How to disable XFree86 and wdm listening ports"
- In reply to: Jarkko Santala: "Re: Best way to filter "Nachi pings"?"
- Next in thread: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 30 Oct 2003 13:01:37 +1000 (EST) To: Jarkko Santala <jake@iki.fi>
On Mon, 27 Oct 2003, Jarkko Santala wrote:
> On Mon, 27 Oct 2003, Kris Kennaway wrote:
> > On Mon, Oct 27, 2003 at 11:06:52AM +0200, Jarkko Santala wrote:
> > >
> > > Definitely this block-all approach is not sane, its like if someone
> > > complains about NFS being broken you'd say disable it. Filtering packets
> > > by length on the other hand is a very nice feature to have.
> >
> > As it happens, ipfw[2] does this anyway.
>
> IMHO this is the correct answer that might have been given right away.
So, using IPFW2, a rule to block the nachi ping would look like:
add deny icmp from any to any in icmptypes 8 iplen 92
correct?
--
:{ andyf@speednet.com.au
Andy Farkas
System Administrator
Speednet Communications
http://www.speednet.com.au/
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Wolfgang Kess: "Re: How to disable XFree86 and wdm listening ports"
- In reply to: Jarkko Santala: "Re: Best way to filter "Nachi pings"?"
- Next in thread: Brett Glass: "Re: Best way to filter "Nachi pings"?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
