tunneling through...

[jeffs at speakeasy.net (jeffs)]

Has anyone had success in tunneling metasploit reverse connections or 
anything for that matter through ICMP or HTTP?  There is a program 
called pingtunnel and ptunnel which will tunnel connections through ICMP 
and I'm wondering how this might play out in a scenario where a user 
outputs via msfpayload an executable that connects to localhost proxy 
that then forwards the connection via ICMP or HTTP tunneling to the 
waiting metasploit server.

Seems like it would be a nice way to bypass egress firewall rules...