Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
452
Views
0
Helpful
1
Replies

Squelch router's response to ICMP unreachables....

abatson
Level 1
Level 1

‎04-01-2004 09:50 AM - edited ‎03-02-2019 02:43 PM

In order to squeeze every drop of performance from my routers, I think I'd seen where a router can be told not to respond with ICMP Unreachable messages. People scanning our network from the Internet & other scanning behaviour for networks that we don't route, cause ICMP unreachables. How do I teach my router to simply drop the packet, and provide NO response back to the sender.

My routers interfaces are just two DS1, and a FastEthernet interface, both with MTUs of 1500 bytes, so there shouldn't be any pathMTU discovery issues with turning off the ICMP Unreachable messages.

-Alex

Labels:
0 Helpful
1 Reply 1

samsam_wang
Level 1
Level 1

‎04-01-2004 10:30 AM

Try

under interface

no ip unreachables

0 Helpful
Customers Also Viewed These Support Documents