Not responding to pings

pilot1 · 06-20-2002, 02:46 PM

I've read that it is possible to set Linux up to not respond to pings. First of all would this cause IRC to stop working, because I would get a ping timeout? If it wouldn't how can I set up my computer to not respond to pings?

Stephanie_new · 06-20-2002, 03:23 PM

This would be refering to setting up a firewall.

And yes, you can set that up. It is the best method to avoid and atttack. If the cracker does not get a response, he would assume that the IP does not exist. He would then move on.

acid_kewpie · 06-20-2002, 03:24 PM

no, irc will still work.

you need to setup up your firewall to drop certain ICMP packets. personally i don't know shit about iptables yet, so i just use firestarter to set it up, works fine, and very easy to install

Stephanie_new · 06-20-2002, 03:34 PM

Holy crap, Acid has admitted to not knowing something!

Everyone clear the building! The world is ending!

Sorry... the opportunity was there. I just had to take it

shoot2kill · 06-20-2002, 03:51 PM

Gosh...Stephanie, you are a good flamer when your chance hits....

well, i like to see how Acid strikes back, hehehe....

Stephanie_new · 06-20-2002, 03:52 PM

Well thank you kind sir.

I await your response master kewpie....

acid_kewpie · 06-20-2002, 03:58 PM

my response...

i know shit about most things.... i jsut don't reply to those things

how about a fun bit of detectiong work... read my last 2000 posts and deduce what i don't know

pilot1 · 06-21-2002, 08:02 AM

Where can I get firestarter or learn how to set up the tables?

X11 · 06-21-2002, 08:31 AM

You can find Firestarter here.

X11 · 06-21-2002, 08:33 AM

Quote:

Originally posted by acid_kewpie
my response...

i know shit about most things.... i jsut don't reply to those things how about a fun bit of detectiong work... read my last 2000 posts and deduce what i don't know

Acid you spend too much time posting that's why.

orgcandman · 06-21-2002, 08:42 AM

iptables is both easy and fun

basically it works like this:

The kernel has tables to which you can add entries telling it how to behave when it sees a packet

INPUT
OUTPUT
FORWARD

The names should be self explanatory.

Flushing the tables turns on a basic "Do whatever the packet says" mode.

/sbin/iptables -F {table name}

After flushing your tables, you need to add a default policy (Don't stick with the linux defaults of "accept")

/sbin/iptables -P {table name} {policy}

where policy can be drop or accept

then just add chains to the table

/sbin/iptables -A {table name} {opts}

so to deny your ping requests:

/sbin/iptables -A INPUT -i eth0 -p icmp --icmp-type destination-unreachable -j DROP
/sbin/iptables -A INPUT -i eth0 -p icmp --icmp-type time-exceeded -j DROP
/sbin/iptables -A INPUT -i eth0 -p icmp --icmp-type echo-reply -j DROP

should do the trick

shoot2kill · 06-21-2002, 08:45 AM

Quote:

Originally posted by X11
Acid you spend too much time posting that's why.

and you know shit about Acid....hehe

Kidding!

pilot1 · 06-22-2002, 11:21 AM

orgcandman, If I copy that into my kernel thingy will IRC respond to pings?

orgcandman · 06-24-2002, 09:15 AM

heh, I forgot to say that eth0 should be replaced with whatever interface you connect to the interface with.

And IRC pings through the connection you've established, so you're all set