Results 1 to 7 of 7
  1. #1
    Join Date
    Feb 2002
    Posts
    59

    blocking ICMP fragments (Ping of Death)

    How can I block ICMP fragment packets / Large ICMP packets with pmfirewall script?

  2. #2
    Join Date
    Mar 2002
    Posts
    1,003
    Read about iptables or ipchains.
    ipfw for fbsd.

  3. #3
    Join Date
    Feb 2002
    Posts
    59
    that doesnt tell me how to do it in pmfirewall script

  4. #4
    Join Date
    Dec 2000
    Location
    Leesburg, VA
    Posts
    3,205
    Originally posted by nethosting
    that doesnt tell me how to do it in pmfirewall script
    Since most people here don't use pmfirewall, you should probably ask this question on the pmfirewall mailing list:

    http://www.pointman.org/

  5. #5
    Join Date
    Mar 2002
    Posts
    1,003
    Ye I misread the question.

    Google is your friend.

  6. #6

    Add this to pmfirewall

    Hi,

    add this line to the file (/usr/local/pmfirewall/pmfirewall.rules.local)

    $IPCHAINS -A input -b -i $OUTERIF -p icmp -s $REMOTENET -d $OUTERNET -j DENY -l





    -Tareq

  7. #7
    Join Date
    Apr 2001
    Location
    Depok, Indonesia
    Posts
    988
    Almost any operation systems today are immune to ping of death, so I think you don't need to block ICMP just to block ping of death.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •