Page 1 of 1
Disable ping responses
Posted: Tue Sep 20, 2011 7:44 pm
by technocar2
Is there a way to disable ping response if someone tries to ping me. I remember on d-link's firmware there was a setting that allowed you to enable/disable response to a ping requests from the WAN side. Is there a similar setting in gargoyle?
Edit:
Ya so I'm referring to WAN PING settings on d-link's firmware
You can look at the emulator here. Just found it.
http://support.dlink.ca/Emulators/dir65 ... twork.html
Re: Disable ping responses
Posted: Tue Sep 20, 2011 8:50 pm
by mix
You need to edit the ping rule in /etc/config/firewall
I think that the ability to enable/disable ping replies should be included in the web interface as well. I think changing port request replies from REJECT to DROP and hence creating what many refer to as a "stealth" firewall should also be configurable. Neither of these are currently in the web inteface, sorry.
Re: Disable ping responses
Posted: Tue Sep 20, 2011 9:23 pm
by technocar2
So you want me to edit firewall text file in backup.tar.gz or do you want me to ssh to the router and edit the file from there and what exactly do I need to change?
Re: Disable ping responses
Posted: Wed Sep 21, 2011 10:39 am
by Piotr
Open /etc/config/firewall and find something like (or exact):
Code: Select all
config 'rule'
option 'src' 'wan'
option 'proto' 'icmp'
option 'icmp_type' 'echo-request'
option 'family' 'ipv4'
option 'target' 'ACCEPT'
and change ACCEPT to 'DROP'.
Then reboot router or run /etc/init.d/firewall restart