From owner-freebsd-hackers@FreeBSD.ORG  Wed Jul  9 01:16:12 2003
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id F2B6D37B401
	for <hackers@freebsd.org>; Wed,  9 Jul 2003 01:16:11 -0700 (PDT)
Received: from cicero0.cybercity.dk (cicero0.cybercity.dk [212.242.40.52])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 45ECC43F75
	for <hackers@freebsd.org>; Wed,  9 Jul 2003 01:16:11 -0700 (PDT)
	(envelope-from db@traceroute.dk)
Received: from user1.cybercity.dk (fxp0.user1.ip.cybercity.dk [212.242.41.34])
	by cicero0.cybercity.dk (Postfix) with ESMTP
	id 36E4C2912D; Wed,  9 Jul 2003 10:16:09 +0200 (CEST)
Received: from main (port132.ds1-arsy.adsl.cybercity.dk [212.242.239.73])
	by user1.cybercity.dk (Postfix) with SMTP
	id 60D4B68B62; Wed,  9 Jul 2003 10:16:08 +0200 (CEST)
Date: Wed, 9 Jul 2003 10:24:33 +0200
From: Socketd <db@traceroute.dk>
To: Terry Lambert <tlambert2@mindspring.com>, hackers@freebsd.org
Message-Id: <20030709102433.0d510abc.db@traceroute.dk>
In-Reply-To: <3F0BAD5C.65895290@mindspring.com>
References: <20030707012205.3103dfc8.db@traceroute.dk>
	<20030707153314.GA1695@webboy.soth.at>
	<20030707180252.44036c61.db@traceroute.dk>
	<3F0A9A1C.25E6EB35@mindspring.com>
	<20030708131339.16da151f.db@traceroute.dk>
	<3F0AA830.9A82CB37@mindspring.com>
	<20030708140012.0fd685c8.db@traceroute.dk>
	<3F0BAD5C.65895290@mindspring.com>
X-Mailer: Sylpheed version 0.8.10claws (GTK+ 1.2.10; i386-portbld-freebsd4.8)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Subject: Re: 5 "Advanced" networking questions
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jul 2003 08:16:12 -0000

On Tue, 08 Jul 2003 22:51:24 -0700
Terry Lambert <tlambert2@mindspring.com> wrote:

> > Hmm, why not just use a firewall?
> 
> Because most firewalls, even commercial ones, don't block the
> ICMP messages you appear to be interested in blocking.
> 
> You appeared to want to turn your FreeBSD box into what's
> normally called a "stealth" system: one that doesn't respond
> at all to external probe attempts.  So it looked like you
> were trying to *write* a firewall, or at least find a set
> of rules that would let your FreeBSD box act as a "stealth"
> one.

I am mainly trying to hide my firewall/gateway and logserver.
Thank you for your reply, I'll go read a little :-)

br
socketd