Date: Sat, 22 Jan 2000 15:59:54 +0200 From: Giorgos Keramidas <charon@hades.hell.gr> To: "David V. D." <cellule@videotron.ca> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: blocking icmp? Message-ID: <20000122155954.A28578@hades.hell.gr> In-Reply-To: <Pine.BSF.4.10.10001210425440.1316-100000@sekel.montain.dhs.org> References: <Pine.BSF.4.10.10001210425440.1316-100000@sekel.montain.dhs.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jan 21, 2000 at 04:26:08AM -0500, David V. D. wrote:
>
> I have a question about freebsd firewall, how can I set it to block (no
> reply) icmp. I'm using FreeBSD 3.4-20000112-STABLE.
If you want to stop only the outgoing icmp messages, and your interface to
the world is ppp0, you can use:
ipfw add NUM deny icmp from any to any out xmit ppp0
Change NUM accordingly, and replace `ppp0' with the interface of your default
route. If you have more than one interfaces, you can add more rules for them
like the one shown above, i.e.
ipfw add NUM deny icmp from any to any out xmit ed0
ipfw add NUM deny icmp from any to any out xmit tun0
You get the point by now...
--
Giorgos Keramidas, < keramida @ ceid . upatras . gr >
"Don't let your schooling interfere with your education." [Mark Twain]
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000122155954.A28578>