From owner-freebsd-security Thu Aug 17 8:17:51 2000 Delivered-To: freebsd-security@freebsd.org Received: from cactus.fi.uba.ar (cactus.fi.uba.ar [157.92.49.108]) by hub.freebsd.org (Postfix) with ESMTP id B65A637B67A for ; Thu, 17 Aug 2000 08:17:39 -0700 (PDT) Received: from cactus.fi.uba.ar (cactus.fi.uba.ar [157.92.49.108]) by cactus.fi.uba.ar (8.9.3/8.9.3) with ESMTP id PAA85608; Thu, 17 Aug 2000 15:11:07 GMT (envelope-from fgleiser@cactus.fi.uba.ar) Date: Thu, 17 Aug 2000 12:11:07 -0300 (ART) From: Fernando Gleiser To: Egon.Rath@lsr-ooe.gv.at Cc: achilov@granch.ru, freebsd-security@FreeBSD.ORG Subject: Re: AW: deny incoming icmp In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 17 Aug 2000 Egon.Rath@lsr-ooe.gv.at wrote: > > |> > |> What type of ICMP messages uses traceroute? I'd like to mask > |> internal network structure from > |> tracing... > |> -- > > Traceroute uses ICMP types 0 (Echo Reply), 8 (Echo request) and 11 (TTL > expired) to determine the route to the host. That's winblows traceroute. Unix traceroute uses UDP instead of icmp echo. The icmp that come back are 11/0 (time exeeded in transit) and several type 3 (host unreach, net unreach, and port unreach.) . take a look at http://www.kohala.com/start/papers.others/vanj.99feb08.txt to see why. > Yours, Egon > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message