how can i stop ping reply?
 

hi everybody , i have newbie question

how can i stop ping reply videlicet how can i stop reply if anybody ping my IP , or just got my IP but don't got reply?

and sorry for bad english .

I believe you just need to install a firewall and configure it to drop all packets.

As root

echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all

This will block all icmp requests.

To make this a permanent settings, add the line below to /etc/sysctl.conf

net.ipv4.icmp_echo_ignore_all = 0

As pljvalez suggested, you can also set a firewall rule to disable icmp reply.

pljvaldez thank you but i wanna stop ping without firewall

ppuru thanks it's worked , but i try to edit sysctl.conf and put what you say but it dosn't worked

anyway thank .

gurumind, my apologies, set

net.ipv4_icmp_echo_ignore_all = 1

to stop pings. setting it to 0 allows pings.

ok ppuru , but would i must restart service or something like that?

and really thanks ppuru .

no need, the next time you reboot your system, the icmp_echo_ignore_all will be set.

You don't need to reboot to make the settings take effect. If you've added the line to /etc/sysctl.conf, as root type sysctl -p

after i type sysctl -p

error: "net.ipv4_icmp_echo_ignore_all" is an unknown key

any suggeste?

try changing the first underscore to a period... like this:

This is slightly off topic.
I know there is a way in which you can configure some message to be displayed when someone tries to ping our machine. Does anyone know how that is done?

well, if you filter the pings with regular iptables instead of sysctl.conf it's just a matter of adding a LOG target rule... so anytime someone pings you it will show-up in /var/log/syslog:

are you suing a gui? check out he iptable instface guarddog

Thanks win32sux, sorry for the typo Gurumind.

net.ipv4.icmp_echo_ignore_all is the correct key.

sysctl -a gives a list of all settable parameters. Play around at your own risk.

Thanks win32sux and ppuru for help

it's working now