Date: Sat, 4 Sep 2004 07:50:40 +0200 From: Zoran Kolic <kolicz@eunet.yu> To: freebsd-security@freebsd.org Subject: Re: ipfw rules or something alike Message-ID: <20040904055040.GA668@kolic.net> In-Reply-To: <20040903120107.55AA316A4E1@hub.freebsd.org>
index | next in thread | previous in thread | raw e-mail
> I use, thus far, "allow icmp from any to any icmptypes 0,3,4,8,11". That
> include 'echo request', of course. Someone else may have a better idea.
You want to be pinged? Why don't
you let something in and something
out? I.e.:
add 10000 allow icmp from any to any icmptypes 8 out
add 10100 allow icmp from any to any icmptypes 0 in
add 10200 allow icmp from any to any icmptypes 11 in
What kind of comp you wonna configure?
Best regards
ZK
home |
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040904055040.GA668>