From owner-freebsd-hackers@FreeBSD.ORG  Wed Jul  9 02:56:23 2003
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0B50D37B401
	for <hackers@freebsd.org>; Wed,  9 Jul 2003 02:56:23 -0700 (PDT)
Received: from newsguy.com (smtp.newsguy.com [129.250.170.69])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7A5DA43FB1
	for <hackers@freebsd.org>; Wed,  9 Jul 2003 02:56:22 -0700 (PDT)
	(envelope-from dcs@newsguy.com)
Received: from newsguy.com (200-140-006-047.bsace7026.dsl.brasiltelecom.net.br
	[200.140.6.47])
	by newsguy.com (8.9.1p2/8.9.1) with ESMTP id CAA98671;
	Wed, 9 Jul 2003 02:55:17 -0700 (PDT)
Message-ID: <3F0BE673.10809@newsguy.com>
Date: Wed, 09 Jul 2003 06:54:59 -0300
From: "Daniel C. Sobral" <dcs@newsguy.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
	rv:1.4b) Gecko/20030507
X-Accept-Language: en,pt-BR,pt,en-GB,en-US,ja
MIME-Version: 1.0
To: Socketd <db@traceroute.dk>
References: <20030707012205.3103dfc8.db@traceroute.dk>
	<20030707153314.GA1695@webboy.soth.at>
	<20030707180252.44036c61.db@traceroute.dk>	<3F0A9A1C.25E6EB35@mindspring.com>
	<20030708131339.16da151f.db@traceroute.dk>	<3F0AA830.9A82CB37@mindspring.com>
	<20030708140012.0fd685c8.db@traceroute.dk>	<3F0BAD5C.65895290@mindspring.com>
	<20030709102433.0d510abc.db@traceroute.dk>
In-Reply-To: <20030709102433.0d510abc.db@traceroute.dk>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: hackers@freebsd.org
Subject: Re: 5 "Advanced" networking questions
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Jul 2003 09:56:23 -0000

Socketd wrote:
> On Tue, 08 Jul 2003 22:51:24 -0700
> Terry Lambert <tlambert2@mindspring.com> wrote:
> 
> 
>>>Hmm, why not just use a firewall?
>>
>>Because most firewalls, even commercial ones, don't block the
>>ICMP messages you appear to be interested in blocking.
>>
>>You appeared to want to turn your FreeBSD box into what's
>>normally called a "stealth" system: one that doesn't respond
>>at all to external probe attempts.  So it looked like you
>>were trying to *write* a firewall, or at least find a set
>>of rules that would let your FreeBSD box act as a "stealth"
>>one.
> 
> 
> I am mainly trying to hide my firewall/gateway and logserver.
> Thank you for your reply, I'll go read a little :-)

Err... contrary to what Terry says, there is an option that prevents 
FreeBSD from decreasing TTL, thereby making it stealth.

-- 
Daniel C. Sobral			(8-DCS)
dcs@newsguy.com
dcs@freebsd.org
capo@professional.bsdconspiracy.net

	Spellng is overated anywy.