I've already configured our FW to only accept
certain ICMP-packets, but what about ICMP redirect ?
Is there any compelling reason not to allow this?
(apart from the same reasons as for other ICMP packets...)
I need to let through ICMP redirect from a specific router,
but would like to avoid creating a separate rule for it (my rule base
is growing too much..).
I'm hoping to get away with just adding it to the my "generally accepted"
incoming ICMP-types.
Cheers,
Anders :)
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
