create a rule allowing icmp to where you want from where you want to allow it, then create a rule right below it blocking icmp.
>>> [EMAIL PROTECTED] 01/15/04 08:28AM >>> Using Checkpoint 4.1, what's the best [aka least painful] way to block ICMP traffic? I'd like to disallow inbound IMCP yet allow ICMP to work within our DMZ. I've tried disabling ICMP via the properties panel, it's a little too effective. Can I make exceptions for DMZ traffic? Thanks ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
