Security Basics mailing list archives

Re: Fw rule set question

From: "Ivan ." <ivanhec () gmail com>
Date: Wed, 1 Aug 2007 11:12:17 +1000

there  are useful ICMP types, depends on your network

http://www.samag.com/documents/s=9365/sam0004i/0004i.htm
http://www.cymru.com/Documents/icmp-messages.html

cheers
Ivan

On 7/31/07, Juan B <juanbabi () yahoo com> wrote:

hi,

I am evaluating a Fw rule set.

I see that source quench,icmp unreacheble and time
execeeded (all icmp) is allowed from the internet to
the internal network. this is a cisco pix. is it a
requirmnet that those rules will be opened? what
happened if I disbale them? is there a security risk
here? I dont rememmber seeing those rules opened in
any fw I saw..

thanks a lot !

Juan



____________________________________________________________________________________
Got a little couch potato?
Check out fun summer activities for kids.
http://search.yahoo.com/search?fr=oni_on_mail&p=summer+activities+for+kids&cs=bz

Current thread:

Re: Fw rule set question Ivan . (Aug 01)
- Re: Fw rule set question Miguel Dilaj (Aug 01)
- <Possible follow-ups>
- Re: RE: Fw rule set question dave . long (Aug 01)