Results 1 to 4 of 4

Thread: IPTables

  1. #1

    IPTables

    Is it possible to write a rule that doesn't even allow your machine to be pinged by the outside world? So that the machine doesn't even appear to exist on the WWW?

  2. #2

    Re: IPTables

    Yeah just drop or deny all traffic on the input chain, this wont stop you getting anything, but if you use drop (iirc) then you can't be seen from the net.

    If you just want to stop people pinging you then you'll need to drop/deny icmp packets, but I've compleatly forgoten what port that is sorry. (This won't stop people finding youother ways, nmap for example)

    hth

  3. #3

    Re: IPTables

    if you only want to disable pinging you can do

    echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all

  4. #4

    Re: IPTables

    This is my personal favorite:

    Code:
    iptables -A INPUT -p icmp --icmp-type 8 -m limit --limit 1/m -j ACCEPT
    iptables -A INPUT -p icmp --icmp-type 8 -j DROP
    iptables -A INPUT -p icmp -j ACCEPT
    The first rule only accepts a limited number of pings (1 per minute, with a burst of about 10 I believe (default)), the second rule drops all pings that exceed this, and then I accept all other types of ICMP traffic (which is important to have).

    This is good because it allows you to ping your own box remotely for diagnostic reasons, but prevents people from pingbombing you

Similar Threads

  1. iptables
    By digitalspy99 in forum Linux - General Topics
    Replies: 1
    Last Post: 08-05-2008, 03:42 AM
  2. Need help with iptables
    By Pioneo in forum Linux - Software, Applications & Programming
    Replies: 17
    Last Post: 04-28-2008, 01:33 AM
  3. GUI for iptables???
    By SwampDonkey in forum Linux - Software, Applications & Programming
    Replies: 2
    Last Post: 12-13-2002, 12:50 PM
  4. Where do iptables go?
    By flashingcurser in forum Linux - Software, Applications & Programming
    Replies: 3
    Last Post: 08-14-2002, 08:37 PM
  5. iptables
    By elovkoff in forum Security
    Replies: 9
    Last Post: 03-19-2002, 02:23 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •