On Tue, 31 Aug 1999, Sweeney, Patrick wrote:
> There are two dangers to allowing ICMP through the firewall that spring
> immediately to mind.
>
> The first is that you could subject yourself to Denial of Service (DoS)
> attacks like the ping of death.
If yer net pipe is not bigger then the net pipe of the one pinging you out
<trying to DOS you> dropping the packets at the router or firewall do you
no real good, you are still DOS'ed from the parge number of packets
hitting your pipe.
So, it makes no difference on this issue...
Thanks,
Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
***testing, only testing, and damn good at it too!***
OK, so you're a Ph.D. Just don't touch anything.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
