5 "Advanced" networking questions
Daniel C. Sobral
dcs at newsguy.com
Wed Jul 9 02:56:23 PDT 2003
Socketd wrote:
> On Tue, 08 Jul 2003 22:51:24 -0700
> Terry Lambert <tlambert2 at mindspring.com> wrote:
>
>
>>>Hmm, why not just use a firewall?
>>
>>Because most firewalls, even commercial ones, don't block the
>>ICMP messages you appear to be interested in blocking.
>>
>>You appeared to want to turn your FreeBSD box into what's
>>normally called a "stealth" system: one that doesn't respond
>>at all to external probe attempts. So it looked like you
>>were trying to *write* a firewall, or at least find a set
>>of rules that would let your FreeBSD box act as a "stealth"
>>one.
>
>
> I am mainly trying to hide my firewall/gateway and logserver.
> Thank you for your reply, I'll go read a little :-)
Err... contrary to what Terry says, there is an option that prevents
FreeBSD from decreasing TTL, thereby making it stealth.
--
Daniel C. Sobral (8-DCS)
dcs at newsguy.com
dcs at freebsd.org
capo at professional.bsdconspiracy.net
Spellng is overated anywy.
More information about the freebsd-hackers
mailing list