A Cisco PIX Firewall will allow you to define which type(s) (all 18) of ICMP traffic that you want stopped or allowed. You can further that with ICMP access-lists to really secure and lock down your perimeter. You can also set the PIX to log all denied ICMP attempts. That way you get to see if you might want to do a wholesale (IP) block of a specific IP or network.
>-----Original Message----- >From: eko yulianto [mailto:[EMAIL PROTECTED]] >Sent: Monday, November 05, 2001 9:22 PM >To: [EMAIL PROTECTED] >Subject: securing icmp protocol > >Hello, >Is there anyone can telling me how to make icmp traffic secure? because >I >thought if I disallowed all icmp traffic in my network I will get >headache >if I have to checking connection when the network problem occur, >thank's. > >Eko Yulianto >IT Security >Menara Asia 3rd Floor >Diponegoro 101, Lippo Karawaci >Tangerang, Indonesia >Phone: +62.21.5460666 ext.5335 >Fax: +62.21.5460660 >Post Office: 15810 >E-mail:[EMAIL PROTECTED]
