Re: Ok to let all ICMP traffic through firewall?
From: Volker Birk (bumens_at_dingens.org)
Date: 25 Sep 2005 07:34:02 +0200
In comp.security.firewalls Walter Roberson <email@example.com> wrote:
> There was an attack publicized within the last few years, in
> which attackers sent ICMP Network Redirect and Host Redirect
> (which don't require responses...) specifying IP addresses
Yes. This is the reason to filter redirects.
-- "Es kann nicht sein, dass die Frustrierten in Rom bestimmen, was in deutschen Schlafzimmern passiert". Harald Schmidt zum "Weltjugendtag"