Re: is it rational to close the 139 port

To: debian-user@lists.debian.org
Subject: Re: is it rational to close the 139 port
From: Pascal Hambourg <pascal@plouf.fr.eu.org>
Date: Sun, 22 Jul 2012 14:54:57 +0200
Message-id: <[🔎] 500BF821.3080609@plouf.fr.eu.org>
In-reply-to: <[🔎] 20120722115635.34c7336d@ares.home.chubig.net>
References: <[🔎] CAG9cJmmyF4Hi5aKjdzOX8NXew2LVbpNyu0aSDytCjZ9AsB961Q@mail.gmail.com> <[🔎] 20120722115635.34c7336d@ares.home.chubig.net>

Claudius Hubig a écrit :
> 
> While it is technically possible to block these requests for IPv4,
> you should never block ICMPv6, since it is necessary to do SLAAC.

Not only SLAAC (which is optional) but also neighbour discovery, which
is mandatory in most cases on a shared medium such as ethernet as it
plays a similar role as ARP does for IPv4. However only a few ICMPv6
types are used by neighbour discovery, and echo request/reply are not
part of them. Namely :
neighbour solicitation
neighbour advertisement
router solicitation
router advertisement

Reply to:

References:
- is it rational to close the 139 port
  - From: lina <lina.lastname@gmail.com>
- Re: is it rational to close the 139 port
  - From: Claudius Hubig <debian_1207@chubig.net>

Prev by Date: Re: Optimal Storage Server
Next by Date: Re: Per user "gnome-shell.css"
Previous by thread: Re: is it rational to close the 139 port
Next by thread: Re: is it rational to close the 139 port
Index(es):
- Date
- Thread