Date: Fri, 11 Jun 1999 21:53:06 -0600 From: Nate Williams <nate@mt.sri.com> To: Pete Fritchman <petef@netreach.net> Cc: Ruslan Ermilov <ru@ucb.crimea.ua>, "Jason L. Schwab" <jschwab@royal.net>, ghandi@mindless.com, freebsd-security@FreeBSD.ORG Subject: Re: firewalls Message-ID: <199906120353.VAA23229@mt.sri.com> In-Reply-To: <Pine.LNX.3.96.990611202315.5891A-100000@static-petef.netreach.net> References: <19990612004633.A29090@relay.ucb.crimea.ua> <Pine.LNX.3.96.990611202315.5891A-100000@static-petef.netreach.net>
next in thread | previous in thread | raw e-mail | index | archive | help
[ blocking all ICMP packets ] > I did it before and it worked fine. It will affect people trying to connect to you though. *DON'T* firewall something unless you know the effects of it. Blocking all ICMP is a violation of RFC, and shows that you don't understand how TCP/IP works. *MOST* of the ICMP types can be blocked, but not all of them. Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199906120353.VAA23229>