From route@onyx.infonexus.com Mon Sep 16 02:40:36 1996 Received: from onyx.infonexus.com (plugHead@onyx.infonexus.com [204.162.164.220]) by suburbia.net (8.7.4/Proff-950810) with SMTP id CAA10536 for ; Mon, 16 Sep 1996 02:40:06 +1000 From: route@onyx.infonexus.com Received: (qmail-queue invoked by uid 501); 15 Sep 1996 16:43:28 -0000 Message-ID: <19960915164328.7347.qmail@onyx.infonexus.com> Subject: Re: BoS: ping flood To: beckman@nova.org (Peter Beckman) Date: Sun, 15 Sep 1996 09:43:28 -0700 (PDT) Cc: best-of-security@suburbia.net In-Reply-To: from "Peter Beckman" at Sep 15, 96 00:41:33 am X-Mailer: ELM [version 2.4 PL24] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Peter Beckman's thoughts were: | Would this cause a ping NOT to respond as "themachine is alive"? Or would Correct. | this just reject MULTIPLE PINGS from a machine/IP in quick succession? | Like not allow another ping from that machine/IP for another second or 2? The router should drop the traffic, NOT responding to it in any way. | My guess is that your are cutting all PING packets at the router, thus | causing all your machines to be "un-pingable." Yup. Unless you tunnel ICMP in something like UDP...;) | As I am just learning the "inner-workings" of networking, what is an | ICMP packet? "... The Internet Control Message Protocol is an adjunct to the IP layer. It is a connectionless protocol used to convey error messages and other information to unicast addresses. ICMP packets are encapsulated inside of IP datagrams. The first 4-bytes of the header are same for every ICMP message, with the remainder of the header differing for different ICMP message types. There are 15 different types of ICMP messages. ..." I also direct you to TCP/Illustrated vol I, or for an online source of information, check out: ftp.infonexus.com/pub/Philes/NEtTech/TCP-IP/tcpIp.intro.txt.gz and other files in that dir... -- [ route@infonexus.com ] Editor, Phrack Magazine / Member, Guild Corporation the greatest trick the devil ever pulled was convincing the world he didn't exist