Date: Tue, 12 Aug 2003 00:22:43 GMT From: Mark <admin@asarian-host.net> To: <freebsd-questions@freebsd.org> Subject: Restricting ICMP Message-ID: <200308120022.H7C0MGXS058078@asarian-host.net>
next in thread | raw e-mail | index | archive | help
Hello,
Is there a way I can use ipfw to disallow ICMP from anyone, but root?
(FreeBSD 4.7R) I tried this:
${fwcmd} -q add 4 allow icmp from any to any icmptype 0,3,8,11 in via
${outside}
${fwcmd} -q add 4 allow icmp from any to any uid root
${fwcmd} -q add 4 deny log icmp from any to any
But that, obviously, does not do what I want it to, as it keeps denying
everything going out. It may not even be possible to restrict ICMP that way,
but it never hurts to ask. :)
Thanks.
- Mark
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200308120022.H7C0MGXS058078>