Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 18 Mar 2002 17:35:56 -0800
From:      "Crist J. Clark" <cjc@FreeBSD.ORG>
To:        Peter Brezny <pbrezny@purplecat.net>
Cc:        freebsd-net@FreeBSD.ORG
Subject:   Re: icmp 5
Message-ID:  <20020318173556.D60554@blossom.cjclark.org>
In-Reply-To: <HDEBKOFAJCKIJIDMEINCKEBFELAA.pbrezny@purplecat.net>; from pbrezny@purplecat.net on Mon, Mar 18, 2002 at 02:33:34PM -0500
References:  <HDEBKOFAJCKIJIDMEINCKEBFELAA.pbrezny@purplecat.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Mon, Mar 18, 2002 at 02:33:34PM -0500, Peter Brezny wrote:
> Hi Everyone,
> 
> Where can i find an explanation of the different icmp types.
> 
> I ran across some standard firewall rulesets that say these types are
> required:
> #       Allow required ICMP
>         $fwcmd add allow icmp from any to any icmptypes 3,4,11,12 keep-state
> 
> And now I've got a cisco router that's wanting a response from an icmp type
> 5.
> 
> What is type 5 for, and where can i get some more info on the different
> types in an icmp packet.
> 
> Well, I just partly answered my question with a quick google search for icmp
> type
> 
> http://www.iana.org/assignments/icmp-parameters
> 
> 
> However, I'm still needing some more info.  Why would my router be sending
> redirect ICMP info to this host?

Go to the source. RFC 792.

> And are the required ICMP types in the firewall rule above really adequate?

They are definately not inadequate in the sense that they are not
permissive enough. People can do Really Bad Things with redirect
messages.

> Here's what's showing up in the system report:
> > ipfw: 65435 Deny ICMP:5.0 router.ip.address host.ip.adress in via xl0

Run,

  # tcpdump -nvv -ixl0 'icmp'

To see what packets are generating the redirects. You may wish to
change your routing accordingly.
-- 
Crist J. Clark                     |     cjclark@alum.mit.edu
                                   |     cjclark@jhu.edu
http://people.freebsd.org/~cjc/    |     cjc@freebsd.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020318173556.D60554>