Date: Sat, 4 Sep 2004 07:50:40 +0200 From: Zoran Kolic <kolicz@eunet.yu> To: freebsd-security@freebsd.org Subject: Re: ipfw rules or something alike Message-ID: <20040904055040.GA668@kolic.net> In-Reply-To: <20040903120107.55AA316A4E1@hub.freebsd.org> References: <20040903120107.55AA316A4E1@hub.freebsd.org>
index | next in thread | previous in thread | raw e-mail
> I use, thus far, "allow icmp from any to any icmptypes 0,3,4,8,11". That
> include 'echo request', of course. Someone else may have a better idea.
You want to be pinged? Why don't
you let something in and something
out? I.e.:
add 10000 allow icmp from any to any icmptypes 8 out
add 10100 allow icmp from any to any icmptypes 0 in
add 10200 allow icmp from any to any icmptypes 11 in
What kind of comp you wonna configure?
Best regards
ZK
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040904055040.GA668>