Firewall Wizards mailing list archives

Re: ICMP Packets.

From: Darren Reed <darrenr () reed wattle id au>
Date: Fri, 5 Jun 1998 22:07:31 +1000 (EST)

In some email I received from Bennett Todd, sie wrote:


I haven't seen too many such. Rather, the original poster who started
this thread asked _what_ sort of ICMP packets (like the ``need frag''
you refer to for path MTU discovery) we should let through because
they're actually necessary.


You could consider adding "source quench" ICMP messages to the "let
through" list.

"Time exceeded" is needed for traceroute (and in an ever growing
internet, you may need to be aware of boxes with low default ttl's).

Darren

Current thread:

Re: ICMP Packets., (continued)
- - Re: ICMP Packets. Henry Hertz Hobbit (Jun 03)
- Re: ICMP Packets. Don Kendrick (Jun 02)
  - Re: ICMP Packets. Perry E. Metzger (Jun 02)
  - Re: ICMP Packets. Perry E. Metzger (Jun 03)
    - Re: ICMP Packets. Bennett Todd (Jun 04)
    - Re: ICMP Packets. Paul D. Robertson (Jun 05)
- Re: ICMP Packets. Don Kendrick (Jun 02)
  - Re: ICMP Packets. Perry E. Metzger (Jun 03)
    - Re: ICMP Packets. matthew green (Jun 04)
    - Re: ICMP Packets. Bennett Todd (Jun 04)
    - Re: ICMP Packets. Darren Reed (Jun 05)
    - Re: ICMP Packets. tqbf (Jun 07)
    - Re: ICMP Packets. Darren Reed (Jun 07)
    - Re: ICMP Packets. blast (Jun 08)
    - Re: ICMP Packets. Aleph One (Jun 09)
    - Re: ICMP Packets. Ge' Weijers (Jun 05)
    - Re: ICMP Packets. Bennett Todd (Jun 05)
    - Re: ICMP Packets. tqbf (Jun 04)
    - Re: ICMP Packets. Paul D. Robertson (Jun 05)
- Re: ICMP Packets. Andrew Yeomans (Jun 03)
- Re: ICMP Packets. john_smith (Jun 05)

(Thread continues...)