Re: [nsp] Re: Router tunneling?!

From: Charley Kline (kline@uiuc.edu)
Date: Sat Mar 14 1998 - 00:42:23 EST

Next message: jlixfeld@idirect.ca: "Re: [nsp] Re: Router tunneling?!"
Previous message: Brian Wallingford: "Re: [nsp] Used cisco."
In reply to: Michael Shields: "Re: [nsp] Re: Router tunneling?!"
Next in thread: jlixfeld@idirect.ca: "Re: [nsp] Re: Router tunneling?!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

> Don't filter out all ICMP; you'll break things in sometimes subtle
> ways. If you want to break traceroute, do so without breaking path
> MTU discovery, port unreachable, &c.

Seconded. We tried blocking all ICMP to our mainframe net once (back in
the "ping of death" days) and inadvertently broke ccMail. For some inane
reason, it makes sure it can ping an SMTP server before attempting the
TCP connection to send mail. Go figure.

/cvk

Next message: jlixfeld@idirect.ca: "Re: [nsp] Re: Router tunneling?!"
Previous message: Brian Wallingford: "Re: [nsp] Used cisco."
In reply to: Michael Shields: "Re: [nsp] Re: Router tunneling?!"
Next in thread: jlixfeld@idirect.ca: "Re: [nsp] Re: Router tunneling?!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:13:15 EDT