|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: ICMP Packets.
James R Grinter (jrg
gbnet.net)
Tue, 2 Jun 1998 16:19:21 +0100
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: tqbfpobox.com: "Re: ICMP Packets."
- Previous message: Henry Hertz Hobbit: "Re: Dealing with MS Netmeeting & H.323"
- In reply to: Hal: "Dealing with MS Netmeeting & H.323"
- Next in thread: Henry Hertz Hobbit: "Re: ICMP Packets."
- Reply: Henry Hertz Hobbit: "Re: ICMP Packets."
On Tue 2 Jun, 1998, Henry Hertz Hobbit <hhhobbiticarus.weber.edu> wrote:
>said it before, if you don't need it, block it, both ways. In
>other words, this applies to *everything*. If you don't NEED
>the ICMP packets (all of them, not just the echo/echo-reply)
>to go out, block them. Your actual needs, not somebody else's
this is sound advice - but - beware of ICMP packet types that are
fundamental to the correct operation of some protocols.
('path MTU discovery' leaps to mind here, as one thing that is blocked
in many places seemingly without regard to what that will break. If you
don't know what this does and what the implications are, this is a good
time to go and research.)
James.
- Next message: tqbfpobox.com: "Re: ICMP Packets."
- Previous message: Henry Hertz Hobbit: "Re: Dealing with MS Netmeeting & H.323"
- In reply to: Hal: "Dealing with MS Netmeeting & H.323"
- Next in thread: Henry Hertz Hobbit: "Re: ICMP Packets."
- Reply: Henry Hertz Hobbit: "Re: ICMP Packets."
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:11:00 CDT