[ previous ] [ next ] [ threads ]
 From:  "Chad R. Larson" <clarson at eldocomp dot com>
 To:  Falcor <falcor at netassassin dot com>, Alan Horn <ahorn at deorth dot org>
 Cc:  "m0n0wall at lists dot m0n0 dot ch" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] keep state question.
 Date:  Sun, 4 Jan 2004 17:56:22 -0700
At 02:47 AM 1/2/2004, Falcor wrote:
>I still would never personally want ICMP from the WAN to my LAN... but 
>that is just me.

The problem is that people tend to think of ICMP only in relation to 
ping.  It is, in fact, part of the IP protocol, and to be a good citizen on 
the net you should let it through.  Else (for example) how would a machine 
on your LAN do MTU discovery?

Chad R. Larson (CRL22)    chad at eldocomp dot com
   Eldorado Computing, Inc.   602-604-3100
      5353 North 16th Street, Suite 400
        Phoenix, Arizona   85016-3228


This message is intended for the sole use of the individual and entity to whom it is addressed, and
may contain information that is privileged, confidential and exempt from disclosure under applicable
law. If you are not the intended addressee, nor authorized to receive for the intended addressee,
you are hereby notified that you may not use, copy, disclose or distribute to anyone the message or
any information contained in the message. If you have received this message in error, please
immediately advise the sender by reply email, and delete the message. Thank you.