thr3ads.net - Shorewall users - /proc/sys/net/ipv4/icmp_echo_ignore

If this information is useful, please help other people find it:
Share via:

Jimi Frechette

2003-Dec-07 21:31 UTC

/proc/sys/net/ipv4/icmp_echo_ignore_all

Hi, I''ve posted about my problem that I couldn''t ping my linux
whatever my shorewall config was. In fact my file
/proc/sys/net/ipv4/icmp_echo_ignore_all had a 1 into it. Is it a shorewall bug
to let it filled even if my policy accepts all even icmp ?

Anyways now it works! GREAT!!!

Tom Eastep

2003-Dec-07 21:49 UTC

head link

Re: /proc/sys/net/ipv4/icmp_echo_ignore_all

On Sun, 7 Dec 2003, Jimi Frechette wrote:
> Hi, I''ve posted about my problem that I couldn''t ping my
linux whatever
> my shorewall config was. In fact my file
> /proc/sys/net/ipv4/icmp_echo_ignore_all had a 1 into it. Is it a
> shorewall bug to let it filled even if my policy accepts all even icmp ?
> 
No -- Shorewall doesn''t touch that flag one way or the other; same with
most flags in /proc/sys/net/ipv4.

It seems pretty silly for Shorewall to provide redundant config variables 
for those; just set them the way you want in /etc/shorewall/start.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net

Shorewall users - Dec 2003 - /proc/sys/net/ipv4/icmp_echo_ignore_all

/proc/sys/net/ipv4/icmp_echo_ignore_all

Re: /proc/sys/net/ipv4/icmp_echo_ignore_all