From owner-freebsd-questions@FreeBSD.ORG Fri Jul 28 12:21:52 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A0AAC16A4DA for ; Fri, 28 Jul 2006 12:21:52 +0000 (UTC) (envelope-from wmoran@collaborativefusion.com) Received: from mx00.pub.collaborativefusion.com (mx00.pub.collaborativefusion.com [206.210.89.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id 331D043D45 for ; Fri, 28 Jul 2006 12:21:51 +0000 (GMT) (envelope-from wmoran@collaborativefusion.com) Received: from [172.24.56.99] (mail.craftmfg.com [198.144.43.23]) (AUTH: LOGIN wmoran, TLS: TLSv1/SSLv3,256bits,AES256-SHA) by wingspan with esmtp; Fri, 28 Jul 2006 08:21:50 -0400 id 00056407.44CA015E.000123D3 Message-ID: <44CA0156.6000707@collaborativefusion.com> Date: Fri, 28 Jul 2006 08:21:42 -0400 From: Bill Moran User-Agent: Thunderbird 1.5.0.4 (Windows/20060516) MIME-Version: 1.0 To: User Freebsd References: <20060728001202.W17979@ganymede.hub.org> In-Reply-To: <20060728001202.W17979@ganymede.hub.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: icmp packets - disabling via sysctl, or cisco switch ... ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Jul 2006 12:21:52 -0000 User Freebsd wrote: > > Two part question here ... > > first part ... is there a way of just disabling icmp by setting a > sysctl, so that a server just doesn't respond to them? > > second part ... is there a way of telling a cisco switch to drop all > icmp packets, preferrably to all but an exception list, but to > everywhere works as well ... Sure, just uninstall TCP/IP. ICMP isn't needed unless you're using TCP/IP.