Help: No Ping

This is a discussion on Help: No Ping within the Linux Networking forums, part of the Linux Forums category; Hello, How to avoid others use the command "ping" to scan my computer? My Linux is RHEL 3. ...


Go Back   Usenet Forums > Linux Forums > Linux Networking

Reload this Page Help: No Ping

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 01-02-2008
Amy Lee
 
Posts: n/a
Default Help: No Ping
Hello,

How to avoid others use the command "ping" to scan my computer? My Linux
is RHEL 3. I assume that I should use iptables.

Thank you very much~

Regards,

Amy Lee
Reply With Quote
  #2 (permalink)  
Old 01-02-2008
Amy Lee
 
Posts: n/a
Default Re: Help: No Ping
On Wed, 02 Jan 2008 13:53:18 +0100, Davide Bianchi wrote:

> On 2008-01-02, Amy Lee <openlinuxsource@gmail.com> wrote:
>> How to avoid others use the command "ping" to scan my computer?
>
> Block icmp type 8 (echo-request)
> Davide
Thank you. But can you tell me more details and how to execute this
command?

Amy
Reply With Quote
  #3 (permalink)  
Old 01-02-2008
Burkhard Ott
 
Posts: n/a
Default Re: Help: No Ping
Am Wed, 02 Jan 2008 21:14:26 +0800 schrieb Amy Lee:

> On Wed, 02 Jan 2008 13:53:18 +0100, Davide Bianchi wrote:
>
>> On 2008-01-02, Amy Lee <openlinuxsource@gmail.com> wrote:
>>> How to avoid others use the command "ping" to scan my computer?
^^^^^^^^^^^^^^
You don't need icmp to scan a target.
> Thank you. But can you tell me more details and how to execute this
> command?

iptables -A INPUT -p icmp --icmp-type echo-request -j DROP
What is wrong with scanning?

cheers
Reply With Quote
  #4 (permalink)  
Old 01-02-2008
Amy Lee
 
Posts: n/a
Default Re: Help: No Ping
On Wed, 02 Jan 2008 13:18:06 +0000, Burkhard Ott wrote:

> Am Wed, 02 Jan 2008 21:14:26 +0800 schrieb Amy Lee:
>
>> On Wed, 02 Jan 2008 13:53:18 +0100, Davide Bianchi wrote:
>>
>>> On 2008-01-02, Amy Lee <openlinuxsource@gmail.com> wrote:
>>>> How to avoid others use the command "ping" to scan my computer?
> ^^^^^^^^^^^^^^
> You don't need icmp to scan a target.
>> Thank you. But can you tell me more details and how to execute this
>> command?
>
> iptables -A INPUT -p icmp --icmp-type echo-request -j DROP
> What is wrong with scanning?
>
> cheers

Thank you. And I wanna know if I enable this strategy whether it will
influence anything else.

Regards,

Amy
Reply With Quote
  #5 (permalink)  
Old 01-02-2008
Pascal Hambourg
 
Posts: n/a
Default Re: Help: No Ping
Hello,

Amy Lee a écrit :
>
> How to avoid others use the command "ping" to scan my computer? My Linux
> is RHEL 3.

You can't scan a host with ping. You can just learn it's there, but
there are many other methods.

> I assume that I should use iptables.

You don't need iptables for this. You can just instruct the kernel to
ignore ICMP echo requests :

echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all
or
sysctl -w net.ipv4.icmp_echo_ignore_all=1

This can usually be made persistent across reboots by adding the
following line into the file /etc/sysctl.conf :

net.ipv4.icmp_echo_ignore_all=1
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 11:26 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0