http://tech-recipes.disqus.com/Cookbook of Tech TutorialsenThu, 16 Dec 2004 20:55:21 -0000http://www.tech-recipes.com/rx/40/disable-icmp-echo-ping-responses-in-linux/#comment-2766807<p>thanks for the tip! complete newbie to Linux but managed to get 100% stealth enabled in the firewall....<br>using your tips page.. only had to disable ping to achieve it! thanx again! :P</p>GuestThu, 16 Dec 2004 20:55:21 -0000http://www.tech-recipes.com/rx/40/disable-icmp-echo-ping-responses-in-linux/#comment-2766805<p>But that would stop pings altogether. If you have a monitoring service, this would hurt you. You would never know if your server went down.</p><p>I would suggest installing APF fire wall, then do this:<br>pico -w /etc/apf/conf.apf</p><p>Change this:<br>IG_ICMP_TYPES="3,5,11,0,30,8"</p><p>To this:<br>IG_ICMP_TYPES="3,5,11,0,30"</p><p>So, if you have a monitoring service, add the monitor's IP to the alallow_hosts.rules file.</p><p>THEN:<br>service apf restart</p><p>That would block pings from all outside sources except the IP's you explicitly allow.</p>AnonymousWed, 04 Aug 2004 19:01:21 -0000