DISQUS

Hello! Tech-Recipes is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

www.tech-recipes.com/ Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- davak
  76 comments · 1 points
- shamanstears
  26 comments · 1 points
- Quinn McHenry
  23 comments · 2 points
- seamonkey420
  18 comments · 1 points
- flexinfo
  11 comments · 1 points
Popular Threads
- Firefox 3.5: How to Disable Location-Aware Browsing
  1 day ago · 1 comment
- Using iPhone 3G S Voice Control Commands
  1 week ago · 7 comments
- iPhone 3.0: Show Battery Percentage
  1 week ago · 7 comments
- Windows 7: How to Reset the Recycle Bin
  6 days ago · 1 comment
- Windows 7: Make Aero Perform Faster
  2 weeks ago · 2 comments
Recent Comments
- Thank you! This was very helpful.
  22 minutes ago by BKologger
  
  in Disable the Real Player Message Center | Windows | Tech-Recipes
- Opps I didn't see lift chair... "The 'gcc compiler' is installed when one installs 'XcodeTools' (via the 'XcodeTools.mpkg' file) from the installation CD (if...
  1 hour ago by J.C.
  
  in Mac OS X install gcc compiler | Mac system administration | Tech-Recipes
- Sorry if i am repeating anyone but I know if you have mac 10.4.X then on the install disk you can find a copy of xcode...
  1 hour ago by J.C.
  
  in Mac OS X install gcc compiler | Mac system administration | Tech-Recipes
- ok
  2 hours ago by arez
  
  in How to Open and Burn mdf and mds Files to CD or DVD? | Windows | Tech-Recipes
- what would happen if your system failed after this?
  3 hours ago by green mower
  
  in Windows 7: My System Won’t Stop Restarting (Looping on System Failure)

Tech-Recipes

Cookbook of Tech Tutorials

Jump to original thread »

Disable ICMP echo (ping) responses in Linux | Linux networking | Tech-Recipes

Started by qdideas · 9 months ago

No excerpt available. Jump to website »

3 comments

Anonymous
4 years ago

But that would stop pings altogether. If you have a monitoring service, this would hurt you. You would never know if your server went down.

I would suggest installing APF fire wall, then do this:
pico -w /etc/apf/conf.apf

Change this:
IG_ICMP_TYPES="3,5,11,0,30,8"

To this:
IG_ICMP_TYPES="3,5,11,0,30"

So, if you have a monitoring service, add the monitor's IP to the alallow_hosts.rules file.

THEN:
service apf restart

That would block pings from all outside sources except the IP's you explicitly allow.

reply

Anonymous
4 years ago

Just have your monitoring service try to connect to an open port (FTP, POP3, SMTP, WEB, SSH, Etc.) instead of going through the trouble of installed firewall software and configuring it. I use hyperspin.com and they can try to connect to a specific port instead or in addition to a classic ping.

reply

Guest
4 years ago

thanks for the tip! complete newbie to Linux but managed to get 100% stealth enabled in the firewall....
using your tips page.. only had to disable ping to achieve it! thanx again! :P

reply

Add New Comment

Returning? Login