Firewall Wizards mailing list archives

ICMP destination unreachable messages

From: "Max Enders" <Max.Enders () watchguard com>
Date: Tue, 15 Apr 2003 11:43:37 -0700

Hello,

I'm curious to know how firewalls handle duplicate ICMP destination unreachable messages. How should replayed packets 
be denied? It seems like the two best options are rate limiting and inspecting the IPID. Any information is appreciated.

Thanks,
Max Enders
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

ICMP destination unreachable messages Max Enders (Apr 15)
- Re: ICMP destination unreachable messages Steven M. Bellovin (Apr 16)
- Re: ICMP destination unreachable messages Chunduru Rama Krishna Prasad (Apr 17)
- <Possible follow-ups>
- RE: ICMP destination unreachable messages Max Enders (Apr 16)