We have a certain e-business server in a DMZ. Until now, I dropped any ping packets
directed at this system's public address from the outside world.
Now customer service wants me to allow echo request packets to reach the public
address, so customers who have access problems can verify the reachability of our
server.
Should I allow this or not? I'm afraid of opening up routes for exploits not to
mention tools like nmap asf.
Any opinions very much welcome
Ralf G.
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
