On 02/12/16 15:30, Rick Stevens wrote:
There's a whole lot of protocols that
come under the "IP" umbrella.
Dump out the content of
/etc/protocols if you want to see a
(fairly
complete, but not exhaustive) list of
what's out there.
After more digging around, it appears
you're using firewalld-
richlanguage stuff. In that case, by
default it affects TCP and UDP, but
not ICMP. You could add another rule
for ICMP:
config rule
option src lan
option src_ip 192.168.1.7
option dest wan
option protocol icmp
option target REJECT (or DROP)
and that should block ping as well.
.
Ok, I'll try adding that. Joe brings up
the need to keep a route open to NTP,
that presents another concern.
--
Bob Goodwin - Zuni, Virginia, USA
http://www.qrz.com/db/W2BOD
box10 FEDORA-23/64bit LINUX XFCE POP3
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
