From owner-freebsd-questions Sat Nov 21 04:40:07 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA09588 for freebsd-questions-outgoing; Sat, 21 Nov 1998 04:40:07 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA09583 for ; Sat, 21 Nov 1998 04:40:03 -0800 (PST) (envelope-from kpielorz@tdx.co.uk) Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242]) by caladan.tdx.co.uk (8.9.1/8.9.1) with ESMTP id MAA22722; Sat, 21 Nov 1998 12:39:15 GMT Message-ID: <3656B473.896FD2D@tdx.co.uk> Date: Sat, 21 Nov 1998 12:39:15 +0000 From: Karl Pielorz Organization: TDX - The Digital eXchange X-Mailer: Mozilla 4.5 [en] (WinNT; I) X-Accept-Language: en MIME-Version: 1.0 To: Brian Gallucci CC: freebsd-questions@FreeBSD.ORG Subject: Re: ICMP References: <000901be153b$273fd0e0$2900a8c0@desktop.briang.org> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Brian Gallucci wrote: > > Which one of these would I use if I whanted to stop poeple from doing a port > scan on my boxes, > but at the same time not stopping me from be able to ping out.... > This is the rule I'm using " ipfw add 3400 deny log icmp from any to > 24.1.88.78 icmptype ? " > > [snip] This isn't really a FreeBSD issue - if you want to stop people from ping'ing you, and yet be able to ping out - you need to look at ICMP Echo's - Allow the ICMP ECHO's out, but deny them IN (as well as some other ICMP, e.g. source routing etc.) You need to do some more reasearch on the net, or better - if you can, buy a book... /etc/rc.firewall lists 2 excellent books on the subject, Regards, Karl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message