Hi,
The firewall interface which comes with Opensuse 11 isn’t fully functional - i.e. doesn’t appear to give the ability to stop the machine replying to icmp packets.
What other interfaces can i use and are there any ‘risks’ in doing so?
Thank you
Hi
iptables doesn’t work?? Oh no!! {joking}
Have a look at the iptables rules, at the moment it is set to accept.
YaST-> System -> etc/sysconfig editor -> search icmp you will see a
rule called;
FW_ALLOW_PING_FW
Set to no, save and restart the firewall…
–
Cheers Malcolm °¿° (Linux Counter #276890)
openSUSE 11.0 x86 Kernel 2.6.25.11-0.1-default
up 2:30, 2 users, load average: 0.39, 0.35, 0.25
GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12
Hey,
Thats great thanks
Another q re firewalls i’m afraid…
I’m using wireshark to watch a secondary pc when pinging my mainpc (opensuse). I can see the mainpc (opensuse) is not responding to pings, nor is it responding when using hping3 for various icmp packets.
However… nmap -sP opensuseip from my secondary pc to mainpc is getting a response. And according to wireshark its via arp.
How can i stop this? I want a complete no response from my opensuse machine. All the ports are closed its literally just stopping it acknowledging its got an ip address.
Thanks
Hi
Have a read here;
Address
Resolution Protocol
Then have a google on “blocking ARP requests”
–
Cheers Malcolm °¿° (Linux Counter #276890)
openSUSE 11.0 x86 Kernel 2.6.25.11-0.1-default
up 1 day 0:04, 2 users, load average: 1.91, 0.76, 0.35
GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12