From owner-freebsd-questions Fri Dec 3 0:48:36 1999 Delivered-To: freebsd-questions@freebsd.org Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id B1FC214C57 for ; Fri, 3 Dec 1999 00:48:29 -0800 (PST) (envelope-from sheldonh@axl.noc.iafrica.com) Received: from sheldonh (helo=axl.noc.iafrica.com) by axl.noc.iafrica.com with local-esmtp (Exim 3.11 #1) id 11toNu-0002fT-00; Fri, 03 Dec 1999 10:48:10 +0200 From: Sheldon Hearn To: "Michael Birch {PCISD Tech}" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: BSD Question In-reply-to: Your message of "Thu, 02 Dec 1999 15:00:52 CST." <000801bf3d08$5180ee20$446b01d8@pcisd.com> Date: Fri, 03 Dec 1999 10:48:10 +0200 Message-ID: <10258.944210890@axl.noc.iafrica.com> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, 02 Dec 1999 15:00:52 CST, "Michael Birch {PCISD Tech}" wrote: > Can you tell me how to shut off SMTP ping requests from being answered = > by my machine. Are you sure you don't mean ICMP instead of SMTP? I've never heard of an SMTP ping request. :-) If you meant ICMP, there doesn't appear to be any knob that you can fiddle with to disable ICMP replies. You'd have to use packet filtering, as with IPFW or IPFilter. If you're having a specific problem with smurf attacks, where your host responds to broadcasts, _that_ can be disabled with the following command: sysctl -w net.inet.icmp.bmcastecho=0 To make this change permanent, add this line to /etc/rc.conf: icmp_bmcastecho="NO" Modern releases of FreeBSD default to this behaviour (not replying to broadcast requests). Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message