On Fri, 2004-12-03 at 17:56 +0000, John Reilly wrote:
> On Fri, 2004-12-03 at 17:22, John P. Looney wrote:
> > On Fri, Dec 03, 2004 at 05:11:30PM +0000, John Reilly mentioned:
> > > Blocking all icmp is bad. Blocking echo packets and their responses
> > > doesn't cause any harm.
> >
> > Except piss people off that try and debug network problems.
>> Agreed completely, but going back to Nils comment/question. If its only
> echoes that are being blocked he's going to have a very hard time to get
> that changed since it was probably purposely set up that way. If all
> icmp is being blocked, he has a better argument for change since
> blocking all is likely to break stuff.
>>Every port bar 80,25,22,53 is blocked.
So there is no way for it to report packet failers.If I'm reading rfc792
right, if I ping a computer it and fails it should tell me if its a
Destination Unreachable,Time Exceeded etc.
quote from rfc792 "The purpose of these control messages is to provide
feedback about problems in the communication environment, not to make IP
reliable"
nils
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
