Re: Ok to let all ICMP traffic through firewall?
From: Mike (NoSpam_at_NoSpam.net)
Date: 09/23/05
- Next message: Peter: "Re: Ok to let all ICMP traffic through firewall?"
- Previous message: Ari Silversteinn: "Re: Website still sees my IP while using proxy"
- In reply to: Peter: "Re: Ok to let all ICMP traffic through firewall?"
- Next in thread: Wolfgang Kueter: "Re: Ok to let all ICMP traffic through firewall?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 23 Sep 2005 09:54:10 -0400
On 22 Sep 2005 22:36:09 GMT, abuse@dopiaza.cabal.org.uk (Peter) wrote:
>I would suggest allowing ICMP Echo and Echo Reply (so ping works),
Be sure to deny Echo Request that is sent to the broadcast address for
your subnet (.255 and .0 for /24 subnets). If a malicious person
sends several hundred of those per second, you'll wind up with a lot
of ICMP traffic on your subnet as each host tries to send back the
reply.
- Next message: Peter: "Re: Ok to let all ICMP traffic through firewall?"
- Previous message: Ari Silversteinn: "Re: Website still sees my IP while using proxy"
- In reply to: Peter: "Re: Ok to let all ICMP traffic through firewall?"
- Next in thread: Wolfgang Kueter: "Re: Ok to let all ICMP traffic through firewall?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
