denying ping
Tom Needs a Hat Mitchell
mitch48 at sbcglobal.net
Tue Mar 9 20:29:04 UTC 2004
On Mon, Mar 08, 2004 at 10:00:22PM -0500, russell wrote:
>
> I'm trying to deny ping access on my new fedora box. I run: # echo 1
> > /proc/sys/net/ipv4/icmp_echo_ignore_all, but this doen't work. Does
> anyone have any ideas how to deny icmp requests on fedora?
Are you trying to setup a stealth mode?
Turning off ICMP packets (ping) is only one of
a long list of things that need to be off if you
want a stealth mode.
BTW it does work for me.
If I start a ping on another machine to this box and play
the replies to ping stop and start as expected.
# echo -e 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all
# cat /proc/sys/net/ipv4/icmp_echo_ignore_all
1
# echo -e 0 > /proc/sys/net/ipv4/icmp_echo_ignore_all
# cat /proc/sys/net/ipv4/icmp_echo_ignore_all
0
# uname -r
2.4.22-1.2174.nptl
--
T o m M i t c h e l l
/dev/null the ultimate in secure storage.
mitch48-at-sbcglobal-dot-net
More information about the fedora-list
mailing list