On Thu, 2016-02-25 at 07:19 +0000, James Hogarth wrote: > Well if you really want to call it a problem... Blocking ICMP via a host > based firewall remains pretty silly. On all servers I used IPtables to block (DROP) all incoming ICMPs except:- type 0 state RELATED,ESTABLISHED type 3 state RELATED,ESTABLISHED type 8 state NEW,RELATED,ESTABLISHED type 11 state RELATED,ESTABLISHED All outgoing ICMPs are blocked except for:- type 0 state RELATED,ESTABLISHED type 8 state NEW,RELATED,ESTABLISHED Am I silly too ;-) -- Regards, Paul. England, EU. England's place is in the European Union. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx https://lists.centos.org/mailman/listinfo/centos
Re: IPtables block user from outbound ICMP
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: IPtables block user from outbound ICMP
- From: Always Learning <centos@xxxxxxxxxxx>
- Date: Fri, 26 Feb 2016 04:04:04 +0000
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <CAGkb5vfd0kk23eGoDN9nSGzS3Kxn8QskY90RrghUYTVUdS+tLg@mail.gmail.com>
- References:
- IPtables block user from outbound ICMP
- From: John Cenile
- Re: IPtables block user from outbound ICMP
- From: Sylvain CANOINE
- Re: IPtables block user from outbound ICMP
- From: Alexander Dalloz
- Re: IPtables block user from outbound ICMP
- From: Valeri Galtsev
- Re: IPtables block user from outbound ICMP
- From: John Cenile
- Re: IPtables block user from outbound ICMP
- From: James Hogarth
- IPtables block user from outbound ICMP
- Prev by Date: Re: CentOS 7 SELinux issue
- Next by Date: Re: CentOS install disable USB keyboard on Acer AXC 603G UW13
- Previous by thread: Re: IPtables block user from outbound ICMP
- Next by thread: Re: IPtables block user from outbound ICMP
- Index(es):
 |