Code: |
iptables -A FORWARD -p icmp --icmp-type echo-request -j DROP |
crash-x wrote: | ||
I block pings ever with iptables, you have only to add this code in your iptables script:
|
crash-x wrote: | ||
|
delete852 wrote: |
Well IpSec is just another VPN protocol as I remember, but to block ICMP requests on a win2k Box, as i do in my home do the following:
1)Open up MMC, and add in Ip Security snap in 2)Create a new policy, name it whaever, and give it a description 3)then look at it's properties, click Edit, There you see, which type of packet it sees, and what it does with it on the next tab. I have a Deny action, you might have to make one, I don't remember if it already was there, to create it go to Add, and just follow the boxes, it might seem overwhelming at the begning, but you will get familiar with it soon. As if it will block P2P, I don't really know, it shouldn't really, but I don't know enought to give a 100% advice. Try it, tell me how it goes. |
b4rtm4n wrote: |
Mos' likely that you have another rule which allows echo-requests in.
Do you have a large complex set of rules and do you have a DROP/DENY everything else at the end? |
igir3dsk1 wrote: | ||
Sorry for the question but where can I find that? Thanks |
crash-x wrote: |
Do somebody know how to block that nmap can't finger my OS ? |
crash-x wrote: |
it is closed but nmap can get OS information when 2port are open, and i have 80 and 21 open, so it can get my OS, maybe somebody know how i can block it without closing all ports. |
crash-x wrote: |
it is closed but nmap can get OS information when 2port are open, and i have 80 and 21 open, so it can get my OS, maybe somebody know how i can block it without closing all ports. |
output generated using printer-friendly topic mod, All times are GMT + 2 Hours