G
Guest
Guest
Archived from groups: comp.security.firewalls (More info?)
I know this has been discussed before, but I'm still not clear on things,
and after Googling quite a bit I can't find any good answers..
I'm under the impression that one should allow ICMP type 3 both in and out
thru the firewall. I'm using Kerio here, so I set up a rule to allow type
3 incoming and outgoing to any address.
At first, I only saw outbound type 3 to my DNS servers. That was it. Now,
after some time allowing it outbound, I'm also starting to see other
destination addresses as well. More and more of them.
My question is this: Is there any harm in allowing outbound ICMP type 3 to
all these various destinations besides my DNS servers? I have no idea if
this is good or bad.
Comments please?
I know this has been discussed before, but I'm still not clear on things,
and after Googling quite a bit I can't find any good answers..
I'm under the impression that one should allow ICMP type 3 both in and out
thru the firewall. I'm using Kerio here, so I set up a rule to allow type
3 incoming and outgoing to any address.
At first, I only saw outbound type 3 to my DNS servers. That was it. Now,
after some time allowing it outbound, I'm also starting to see other
destination addresses as well. More and more of them.
My question is this: Is there any harm in allowing outbound ICMP type 3 to
all these various destinations besides my DNS servers? I have no idea if
this is good or bad.
Comments please?