|
Thanks for the detail info. Another dumb question: >From what you described below, is it safe to assume that most OS doesn't have an option to block PING? PING blocking is usually block by a firewall and if the server is outside of the firewall, there is no way to block that? -----Original Message----- From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Scott Klement Sent: Wednesday, May 03, 2006 10:15 AM To: Midrange Systems Technical Discussion Subject: RE: Ping to a specific port > Just curious: > I'm pretty sure that there is a way to setup a server/router to not > reply to ping. How can this be done if PING is a internal function of > ip? TCP/IP is a network protoocl. Like all network protocol the data is organized into packets. A packet is a small piece of data, usually about 1500 bytes long. In that 1500 bytes are addresses that tell where the packet is headed for, and where it came from. There are also identifying numbers that specify the protocol that it's speaking, and lots of data that's specific to that protocol. Indeed, an iSeries user who is familiar with databases might think of a datagram as being very much like a "record". It's small chunk of data with fields that identify things. The first 20 bytes of every datagram contain IP information. One of the fields is a 1-byte integer (RPG data type 3U 0) that identifies the protocol that's carried inside the IP packet. That protocol might be TCP, UDP or ICMP. (In the case of PING, it'd be ICMP) After those 20 bytes will be the protocol-specific data. In the case of ICMP, there's 28 bytes of data specific to the ICMP protocol. A bunch of fiedls that tell ICMP how to operate. One of those fields is the icmp_type field. This is a 1-byte integer that identifies the type of ICMP packet being sent. In the case of PING, it'll either contain an ICMP_ECHO (8) or ICMP_ECHOREPLY (0) value. For a firewall to block PING requests, all it needs to do is check every packet. If the protocol is ICMP, and the ICMP type field is 8 or 0, it can discard the packet, thus blocking PING. -- This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe, unsubscribe, or change list options, visit: http://lists.midrange.com/mailman/listinfo/midrange-l or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a moment to review the archives at http://archive.midrange.com/midrange-l.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.