Firewall Wizards mailing list archives

RE: how to block ICMP tunneling?

From: Kyle Starkey <KSTARKEY () altera com>
Date: Mon, 19 Jul 1999 10:05:33 -0700

I was under the impression that ICMP should be blocked coming from the
outside.  I can't think of any reason you would want some one from the
outside PINGing, TRACRTing or otherwise Probing your internal network for
active hosts.  IMHO you should simply block the entire proctocol from the
outside.

Just my .02
Kyle

-----Original Message-----
From: Razvan Peteanu [mailto:Razvan.Peteanu () srgsoftware com]
Sent: Friday, July 16, 1999 9:08 AM
To: 'firewall-wizards () nfr net'
Subject: how to block ICMP tunneling?


BO2K has the ability to use ICMP tunneling for its traffic so I'm interested
in what types of ICMP messages should be blocked to prevent this traffic.

Thanks,
Razvan

Current thread:

how to block ICMP tunneling? Razvan Peteanu (Jul 16)
- Re: how to block ICMP tunneling? Darren Reed (Jul 18)
  - Re: how to block ICMP tunneling? Sebastian Krahmer (Jul 19)
- Re: how to block ICMP tunneling? Ted Doty (Jul 18)
- Re: how to block ICMP tunneling? Adam Shostack (Jul 19)
  - BO2k : was (Re: how to block ICMP tunneling?) Jason Brvenik (Jul 20)
- <Possible follow-ups>
- RE: how to block ICMP tunneling? Jason Diesel (Jul 19)
  - RE: how to block ICMP tunneling? Kevin Steves (Jul 26)
- RE: how to block ICMP tunneling? Kyle Starkey (Jul 19)
  - Re: how to block ICMP tunneling? Joseph S D Yao (Jul 20)
  - Re: how to block ICMP tunneling? Chris Brenton (Jul 20)
    - Re: how to block ICMP tunneling? carson (Jul 21)
  - Re: how to block ICMP tunneling? Geva Patz (Jul 20)
- RE: how to block ICMP tunneling? Marcus J. Ranum (Jul 19)
- Re: how to block ICMP tunneling? Steven M. Bellovin (Jul 20)
- RE: how to block ICMP tunneling? Ben Nagy (Jul 20)
- Re: how to block ICMP tunneling? Ryan Russell (Jul 21)
  - Re: how to block ICMP tunneling? Dru (Jul 26)
- RE: how to block ICMP tunneling? Jason Diesel (Jul 21)

(Thread continues...)