I'm trying to get my STN box more secure by adding some commands to the startup. One of them should be correct to block ping (ICMP) requests. The command goes as follows: ipfwadm -I -a deny -P icmp -W $ANYDEV -D $OURBCAST STN starts without err msg's, but the external NIC is still pingable. I'm not that familiar with ipfwadm commands, but one thing that seems wrong is then $OURCAST variable, which could mean the internal network. Since I'm using a private network range (10.0.0.x), this wouldn't be visible anyway. Pinging internal hosts works just fine. Pinging the STN box external NIC from inside works fine too. Can somebody tell me how to make the external NIC not pingable (less visibility from the internet)? Thanks, Sean --- Support our Sponsor ------------------------------------ Want $50 in free calls? Sign up for MCI NetRate and pay just 8� on all your state-to-state long distance calls, and get a $50 prepaid card to use at home or on the go. http://click.topica.com/aaabgdbz8Rp2bAfyICc/MCI ------------------------------------------------------------ -- Visit http://www.ShareTheNet.com for info about ShareTheNet Visit http://www.topica.com/lists/sharethenet for info about this list ____________________________________________________________ T O P I C A -- Learn More. Surf Less. Newsletters, Tips and Discussions on Topics You Choose. http://www.topica.com/partner/tag01
