From owner-freebsd-questions  Sat Nov 21 02:36:34 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id CAA00978
          for freebsd-questions-outgoing; Sat, 21 Nov 1998 02:36:34 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from dns1.briang.org (c879583-a.ptbrg1.sfba.home.com [24.1.88.78])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id CAA00972
          for <freebsd-questions@freebsd.org>; Sat, 21 Nov 1998 02:36:32 -0800 (PST)
          (envelope-from brian@briang.org)
Received: from desktop (desktop.briang.org [192.168.0.41])
	by dns1.briang.org (8.9.1/8.9.1) with SMTP id DAA06011
	for <freebsd-questions@freebsd.org>; Sat, 21 Nov 1998 03:42:41 -0800 (PST)
Message-ID: <000901be153b$273fd0e0$2900a8c0@desktop.briang.org>
Reply-To: "Brian Gallucci" <brian@briang.org>
From: "Brian Gallucci" <brian@briang.org>
To: <freebsd-questions@FreeBSD.ORG>
Subject: ICMP
Date: Sat, 21 Nov 1998 02:39:01 -0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 4.72.3110.1
X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Which one of these would I use if I whanted to stop poeple from doing a port
scan on my boxes,
but at the same time not stopping me from be able to ping out....
  This is the rule I'm using " ipfw add 3400 deny log icmp from any to
24.1.88.78 icmptype ? "

I know it's one of these... Hmmmm

ip           0       IP              # internet protocol, pseudo protocol
number
icmp      1       ICMP            # internet control message protocol
igmp      2       IGMP            # Internet Group Management
ggp        3       GGP             # gateway-gateway protocol
ipencap 4       IP-ENCAP        # IP encapsulated in IP (officially ``IP'')
st            5       ST              # ST datagram mode
tcp          6       TCP             # transmission control protocol
egp        8       EGP             # exterior gateway protocol
pup       12      PUP             # PARC universal packet protocol
udp       17      UDP             # user datagram protocol
hmp       20      HMP             # host monitoring protocol
xns-idp  22      XNS-IDP         # Xerox NS IDP
rdp         27      RDP             # "reliable datagram" protocol
iso-tp4   29      ISO-TP4         # ISO Transport Protocol class 4
xtp          36      XTP             # Xpress Tranfer Protocol
idpr-cmtp     39      IDPR-CMTP       # IDPR Control Message Transport
ipv6        41      IPV6            # ipv6
ipv6-route      43      IPV6-ROUTE      # routing header for ipv6
ipv6-frag       44      IPV6-FRAG       # fragment header for ipv6
rsvp       46      RSVP            # Resource ReSerVation Protocol
gre        47      GRE             # Generic Routing Encapsulation (RFC
1702)
esp       50      ESP             # encapsulating security payload
ah         51      AH              # authentication header
skip      57      SKIP            # SKIP
ipv6-icmp       58      IPV6-ICMP       # ICMP for IPv6
ipv6-nonxt      59      IPV6-NONXT      # no next header for ipv6
ipv6-opts       60      IPV6-OPTS       # destination options for ipv6
vmtp      81      VMTP            # Versatile Message Transport
ospf      89      OSPFIGP         # Open Shortest Path First IGP
ipip       94      IPIP            # Yet Another IP encapsulation
encap   98      ENCAP           # Yet Another IP encapsulation
divert   254     DIVERT          # Divert pseudo-protocol

Thanks
-Brian


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message