Re: block pings

To: Danny Pansters <danny@ricin.com>
Cc: debian-user@lists.debian.org
Subject: Re: block pings
From: Sebastian Ritter <sritter@linuxritter.de>
Date: Wed, 30 Aug 2000 06:23:28 +0200 (CEST)
Message-id: <Pine.LNX.4.21.0008300614510.2199-100000@dimple.linuxritter.de>
In-reply-to: <00083002352402.09796@ricin>

On Wed, 30 Aug 2000, Danny Pansters wrote:

> On Tue, 29 Aug 2000, Nick wrote:
> > how do you stop linux from replying to pings like
> >
> > microsoft does.  you can't ping www.microsoft.com or www.msn.com
> >
> > thankx nick
> 
> OK, I got curious since it involves icmp, so it's not done in 
> /etc/inetd.conf, and I didn't know how to do it. 
> All I can say is RTFM, it's right there in the icpm man page that 
> I tried first.
> 
> Just put this in /etc/sysctl.conf to turn ping replies off:
> 
> net/ipv4/icmp_echo_ignore_all=1
> 
> Then run
> 
> # sysctl -p
> 
> But after that you should really go back to /etc/sysctl.conf and get rid of 
> it again (hint: it involves running sysctrl again :-).

Another fine hack would be this:

 ipchains -A input -i ppp0 -p icmp --icmp-type 8 -j DENY
 ipchains -A output -i ppp0 -p icmp --icmp-type 0 -j REJECT

ICMP type 8 is echo-request. type 0 is echo-reply.
Replace ppp0 by whatever you use to connect to the internet.

 Just my $0.02

   Sebastian

email: sebastian.ritter@web.de

Reply to:

References:
- Re: block pings
  - From: Danny Pansters <danny@ricin.com>

Prev by Date: Re: auto power off
Next by Date: Re: chroot ssh on debian
Previous by thread: Re: block pings
Next by thread: make-kpkg: a script for flavours, and several questions
Index(es):
- Date
- Thread