|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: (no subject)
From: Warren Belfer (warren
BELFER.ORG)Date: Tue Apr 11 2000 - 22:57:09 CDT
- Next message: James Stevenson: "Re: Lots of scans on port 27063"
- Previous message: Jason Baker: "IP fw-in deny spam in logs"
- Next in thread: Peter Eriksson: "(no subject)"
- Next in thread: Del: "(no subject)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
>From: UnixGeek <edXWING.CENTIGRAM.COM>
>Subject: Re: Smurf/broadcast "pings"
>I think you misunderstood the tech's explanation. Anything should reply
>to a broadcast.
I'm sure I'm missing something here but "anything" does not need to respond
to a broadcast ping. Both the host requirements document and the router
requirements document go to some length to point out the possible problem
and the resultant lack of consensus on this issue (even way back then). If
a host or router does respond to broadcast pings by default, it should be
easy to turn it off. If it cannot be, then it is a problem in this day and
age. If the vendor responds with
> > the normal behavior of the outside interface of the pix. There is no
> > way to disable this feature at this present time. This is not
> > considered a defect, this is the normal behavior.
I am surprised and would consider looking for a different vendor. Really
surprised cisco would say this. Sort of hard to get another vendor. :-(
Per RFC-1122 sec 3.2.2.6 (which see for further discussion)
"An ICMP Echo Request destined to an IP broadcast or IP
multicast address MAY be silently discarded."
No, Dennis, you are not nuts.
warren
- Next message: James Stevenson: "Re: Lots of scans on port 27063"
- Previous message: Jason Baker: "IP fw-in deny spam in logs"
- Next in thread: Peter Eriksson: "(no subject)"
- Next in thread: Del: "(no subject)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]