|
|||||||
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
02-19-2004, 05:17 PM
|
#1 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
ICMP need to know
I have tried this test at
http://grc.com/x/ne.dll?bh0ciyl2 And all was stealth but not the ICMP. Should I be concerned with this? If so how do I turn it off. Thank you Last edited by john ranger; 06-17-2008 at 09:53 AM. |
|
|
|
02-19-2004, 05:19 PM
|
#2 |
|
Shiro Usagi
Premium Member
Join Date: Sep 1999
Location: Kaneohe, Hawaii
Posts: 34,002
|
Which software firewall are you using?
 Cricket
|
|
|
|
|
02-19-2004, 05:42 PM
|
#3 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Just the Microsoft standard with XP pro
|
|
|
|
|
02-19-2004, 05:53 PM
|
#4 |
|
Shiro Usagi
Premium Member
Join Date: Sep 1999
Location: Kaneohe, Hawaii
Posts: 34,002
|
Have you installed all the critical updates?
Cricket
|
|
|
|
|
02-19-2004, 06:36 PM
|
#5 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
yes i have.
|
|
|
|
|
02-20-2004, 02:28 PM
|
#6 |
|
Member (8 bit)
Join Date: Jan 2002
Location: Columbus, Ohio
Posts: 212
|
the commands "ping" and "tracert" use functionality from ICMP.
|
|
|
|
|
02-20-2004, 04:29 PM
|
#7 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
I take it no one has an answer for me I guess?
|
|
|
|
|
02-21-2004, 07:40 AM
|
#8 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
Personally, I would use a router for a broadband connection and then enable a feature called DISCARD PING ON WAN SIDE (it's there on all routers).
The problem with software firewalls, especially for ICMP or requests, is that it still uses up your computer's CPU to drop a packet. Which is pretty useless if you think about it. A software firewall is great to close up holes. A ping is a request that allows someone to get a response from your computer. It not only allows someone to detect that a particular IP (aka your computer) is "alive" but it also opens up more issues such as ping floods etc. |
|
|
|
|
02-21-2004, 09:22 AM
|
#9 | |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Quote:
I have a wireless set up with three computers,what firewall unit would you suggest for my network. Thanks I use cable |
|
|
|
|
|
02-21-2004, 09:42 AM
|
#10 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
What are you using for your wireless hardware. Is it an ad hoc network? Please give us details of your current network setup.
Typically, I'd recommend a router+wireless AP of the same mfger/wireless chipset as what you already have. |
|
|
|
|
02-21-2004, 10:07 AM
|
#11 | |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Quote:
I'm using US Robotics with these components http://www.usr.com/products/networki...sp?sku=USR8022 http://www.usr.com/support/product-t....asp?prod=2216 |
|
|
|
|
|
02-21-2004, 11:27 AM
|
#12 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
Hi John :
The product USR8022 is a router (and a very good one at that), and it does have the feature I mentioned. To activate it, 1) log in to your router's configuration pages 2) Click on the Advanced settings 3) Check mark the enable box for the setting DISCARD PING FROM WAN SIDE 4) Then save it. If you wish to see a step by step on how to configure your router and to check various settings check out the online manual - I just did - http://www.usr.com/support/8022/8022-ug/three.html (scroll down to the Miscellaneous Items section) After you are done, you can verify it from the grc.com site again. Other than that, I also wrote a little note on a rough checklist of what you should be doing to secure your network, mind you - the grc site is great, but it should not make you think that you are 100% secure, the checklist is here: http://forum.pcmech.com/showthread.p...threadid=82079 If you require assistance with the implementation of any of these lock-downn feel free to post back. |
|
|
|
|
02-21-2004, 11:37 AM
|
#13 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Well thank you very much that is totally helpful. Thanks for your time and effort. Much appreciated.
John |
|
|
|
|
02-21-2004, 11:47 AM
|
#14 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Thanks to you I'm looking good
Last edited by john ranger; 06-17-2008 at 09:53 AM. |
|
|
|
|
02-21-2004, 01:02 PM
|
#15 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
Again, I post this to reiterate - it by no means, implies that you are entirely secure, especially on a wireless network. Proceed and take harder protection.
|
|
|
|
|
02-21-2004, 05:17 PM
|
#16 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Statica
I had to reboot my USRobotics and I forgot the settings I had for the 133 port that keeps showing up at http://grc.com/x/ne.dll?bh0ciyl2 Can you help me with that? Check att I forgot what to put in.  Thanks |
|
|
|
|
02-21-2004, 05:18 PM
|
#17 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Opps here is the att
Last edited by john ranger; 06-17-2008 at 09:53 AM. |
|
|
|
|
02-22-2004, 10:10 AM
|
#18 |
|
Banned
Join Date: Dec 2001
Location: Canada
Posts: 1,127
|
Statica
I had to reset my (US Robotics) and it wiped all my settings, I forgot the settings to eliminate port 133 port that keeps showing up at http://grc.com/x/ne.dll?bh0ciyl2 Can you help me with that? Check att I forgot what to put in. Thanks Last edited by john ranger; 06-17-2008 at 09:53 AM. |
|
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
