nethosting
06-25-2002, 06:25 PM
How can I block ICMP fragment packets / Large ICMP packets with pmfirewall script?
 | View Full Version : blocking ICMP fragments (Ping of Death) Shyne 06-25-2002, 07:21 PM Read about iptables or ipchains. ipfw for fbsd. nethosting 06-25-2002, 08:11 PM that doesnt tell me how to do it in pmfirewall script allan 06-25-2002, 08:33 PM Originally posted by nethosting that doesnt tell me how to do it in pmfirewall script Since most people here don't use pmfirewall, you should probably ask this question on the pmfirewall mailing list: http://www.pointman.org/ Shyne 06-25-2002, 08:49 PM Ye I misread the question. Google is your friend. TY-MDIT 06-26-2002, 06:09 PM Hi, add this line to the file (/usr/local/pmfirewall/pmfirewall.rules.local) $IPCHAINS -A input -b -i $OUTERIF -p icmp -s $REMOTENET -d $OUTERNET -j DENY -l :D -Tareq priyadi 06-26-2002, 11:43 PM Almost any operation systems today are immune to ping of death, so I think you don't need to block ICMP just to block ping of death. |