Re: What should I block out with my new firewall software?

From: Leythos (void_at_nowhere.com)
Date: 02/14/04 

Date: Sat, 14 Feb 2004 13:27:10 GMT

In article <102r8k0911fn1f8@corp.supernews.com>, neosad1st@charter.net
says...
> Bob Ladbury wrote:
>
> > After much deliberation, it looks like I'm sticking to my good ol'
> > Kerio Personal Firewall v2.15. I still don't know much about net
> > communications, but I'm learning by entering configurations from
> > people like SpongeBob. I'm wondering if there are major things I can
> > block out that I don't use or need, like UDP or TCP. Reason I ask is
> > that I believe I'm getting "pinged";
>
> In my opinion, pinging is no big deal. Say your internet address is
> 24.240.225.88, you should allow pings from 24.240.225.1 (your ISP's
> router), so that they don't terminate your connection thinking you've gone
> offline.

Your idea of allowing PING's is good, but the source is bad - not all
ISP's assign a 255.255.255.0 subnet mask - some are doing 255.255.252.0
and others even more open.

Also, unless your ISP specifically pings you, I would not open inbound
PING. I've never needed it and don't allow it. 

-- 
--
spamfree999@rrohio.com
(Remove 999 to reply to me)