> Their setup is broken. When they block ICMP, they can't reasonably do
> Path MTU probing which depends on these ICMPs. More strictly, they
> should set their own MTU to the minimum value.
Is there a way (using kernel 2.0.x) to block types of icmp with the
firewalling code? i.e. say I have a multiport linux router and want to
block just icmp echo request and echo reply. Is there an easy way to do
it?
------------------------------------------------------------------
Jon Lewis <jlewis@fdt.net> | Unsolicited commercial e-mail will
Network Administrator | be proof-read for $199/message.
Florida Digital Turnpike |
______http://inorganic5.fdt.net/~jlewis/pgp for PGP public key____