APF blocking tracerts question
Hi:
I noticed that once installed, APF blocks all tracerts to a domain by default. Is this a good idea in all cases, and how can I configure APF to allow tracerts instead? |
Just like most networking tools (like ping for example) they have a good and bad side depending on what you're trying to use them for. Traceroute is extremely usefull in diagnosing networking errors, but at the same time can be used for hostile information gathering about your network topology. So it's a question of which one is more of a priority to you. If you decide to enable traceroute, (I'm not that familiar with APF, but I'd start by checking out the options in the /etc/apf/conf.apf.
|
if you want to block the packet anyhow, you can always look into using a tool like 'hping'. it allows you to run traceroute on spesific ports.
Code:
# hping -T -p 25 smtp.gmail.com |
All times are GMT -5. The time now is 10:51 AM. |