> -----Original Message-----
> From: Network Operations [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, July 08, 2000 5:31 AM
> To: [EMAIL PROTECTED]
> Subject: Re: IP Spoofing
>
>
> Why do you even want the "attackers" address? You shouldn't
> allow ICMP traffic in through your firewall in the first place.
>
> If your network design is broken, don't blame people for
> taking advantage of you. Thank them for pointing out your
> weaknesses, fix your gear, and be done with it.
>
Will http traffic still flow even if we block icmp traffic at the firewall?
Does http also use tcp? Are there any disadvantage when I block icmp traffic
on
my public/external interface? How about advantage when we block icmp traffic
on
the public/external interface?
Thanks in advance. :-)
Ron
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
