08-25-2003 10:15 AM - edited 03-09-2019 04:32 AM
I have an external SOHO customer with an 800 series router. (We are a third-party support service.) We have implemented a number of security features on the router.
What's the general opinion on disabling ping replies? Is it a good idea? The ISP has no objections to disabling pings. Should it be ACL'd to allow pings only from our network? If we deny echo-reply, does it also stop traceroute?
Thanks.
08-25-2003 10:44 AM
I allow ping because it is so easy for users to understand. Blocking echo-reply should not stop traceroute - traceroute uses different icmp types
08-25-2003 11:18 AM
It is a good idea to disable PING replies, even traceroutes..
Check this link,
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: