I have been trying to disable ping reply (ICMP), I have read & tried the post at: http://forums.opensuse.org/english/get-technical-help-here/network-internet/393905-how-diable-ping-reply-icmp-suse-11-0-suse-firewall2.html But while YaST sysconfig editor did change the setting, it gave me an error message saying ‘the script failed’ or something to that effect. And my PC is still sending out reply’s to ICMP pings, can someone tell me where I have gone wrong? I am using openSUSE 12.3 Thank you in advance.
I tried this and got the same result as you. The 12.3 updates have had a string of YaST patches. If this has been reported as a bug, it will probably get fixed. In the meantime I can only suggest someting like:
: # iptables -I INPUT -t filter -p icmp -j DROP
(not tested)
On 4/4/2013 4:56 AM, eng-int wrote:
>
> I tried this and got the same result as you. The 12.3 updates have had
> a string of YaST patches. If this has been reported as a bug, it will
> probably get fixed. In the meantime I can only suggest someting like:
>
> Code:
> --------------------
>
> : # iptables -I INPUT -t filter -p icmp -j DROP
>
> --------------------
>
> (not tested)
>
>
SuSEfirewall2 regenerates the iptables on boot using a bourne script. You would need to write a custom rule for this. See the FAQ
in /usr/share/doc/packages/SuSEfirewall2 and also the comments in /etc/sysconfig/scripts/SuSEfirewall2-custom. It sounds like a
bug in YaST.
–
P.V.
“We’re all in this together, I’m pulling for you” Red Green