nanog mailing list archives

Re: smurf

From: "Alec H. Peterson" <ahp () hilander com>
Date: Mon, 8 Dec 1997 13:51:26 -0500

On Mon, Dec 08, 1997 at 11:39:45AM -0700, Wayne Bouchard wrote:


Since so far 6 people misunderstood this, I *meant* those networks
that don't need to permit it, should consider filtering inbound ICMP
echo request packets. (And, hence, blocking the spoofed packet from
causing an ICMP echo reply flood.)


I personally don't see why this would be preferable to just putting no
ip directed-broadcast on all relavent interfaces.

Alec

-- 
+------------------------------------+--------------------------------------+
|Alec Peterson - ahp () hilander com    | Erols Internet, INC.                 |
|Network Engineer                    | Springfield, VA.                     |
+------------------------------------+--------------------------------------+

Current thread:

smurf Wayne Bouchard (Dec 08)
- Re: smurf Karl Denninger (Dec 08)
  - Re: smurf Dean Anderson (Dec 08)
- Re: smurf Adrian Chadd (Dec 08)
  - Re: smurf Craig A. Huegen (Dec 08)
  - Re: smurf Phil Howard (Dec 08)
    - Re: smurf Wayne Bouchard (Dec 08)
    - Re: smurf Alec H. Peterson (Dec 08)
  - Re: smurf Mike Hedlund (Dec 08)
    - Re: smurf Leigh Porter (Dec 08)
  - Re: smurf Henry Linneweh (Dec 08)
- <Possible follow-ups>
- Re: smurf Joe Provo - Network Architect (Dec 08)
  - Re: smurf Craig A. Huegen (Dec 08)
  - Message not available
    - Re: smurf Paul Ferguson (Dec 10)
- Re: smurf Joe Provo - Network Architect (Dec 09)