Re: 2 Ways to block outbound ICMP?

• From: "William Robertson" <robertson.william@xxxxxxxxxxxxxx>
• To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
• Date: Thu, 25 Sep 2003 13:55:39 +0200

Part of a recommendation by John in order to curb the Nachi virus.

 

-----Original Message-----
From: shane mullins [mailto:tsmullins@xxxxxxxxxxxxxxx] 
Sent: 25 September 2003 13:10 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: 2 Ways to block outbound ICMP?

 

http://www.ISAserver.org

I am curios, why the need to block outbound ICMP traffic?

 

Shane 

 

----- Original Message ----- 

From: William Robertson <mailto:robertson.william@xxxxxxxxxxxxxx>  

To: [ISAserver.org <mailto:isalist@xxxxxxxxxxxxx>  Discussion List] 

Sent: Thursday, September 25, 2003 1:57 AM

Subject: [isalist] 2 Ways to block outbound ICMP?

 

http://www.ISAserver.org

Hi there

 

I've just been reading
http://support.microsoft.com/default.aspx?scid=kb;en-us;283213 and noticed
the section on "Blocking and Logging Outbound ICMP Traffic".

 

Now this article was last reviewed on 23 April 2003 so I presume that it's
info is pretty current. But what I don't understand is why I would want to
look at installing the ISAHF51.EXE and then creating the BlockOutboundICMP
registry key, when simply disabling the default "Allow Outbound ICMP" Packet
Filter rule would appear to do the same thing.?

 

Am I missing something here?

 

Cheers

William R. 

 

---------------------------------------------------------------------
Everything in this e-mail and attachments relating to the official 
business of Columbus Stainless is proprietary to the company. It is 
confidential, legally privileged and protected by law. Columbus 
Stainless does not own and endorse any other content. Views and 
opinions are those of the sender unless clearly stated as being that 
of Columbus Stainless. The person addressed in the e-mail is the sole 
authorised recipient.  Please notify the sender immediately if it has 
unintentionally reached you and do not read, disclose or use the 
content in any way. Whilst all reasonable steps are taken to ensure 
the accuracy and integrity of information and data transmitted 
electronically and to preserve the confidentiality thereof, no 
liability or responsibility whatsoever is accepted if information or 
data is,for whatever reason, corrupted or does not reach its intended
destination.
---------------------------------------------------------------------


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tsmullins@xxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub') 

 


---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.515 / Virus Database: 313 - Release Date: 9/1/03

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
robertson.william@xxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub') 


---------------------------------------------------------------------
Everything in this e-mail and attachments relating to the official
business of Columbus Stainless is proprietary to the company. It is
confidential, legally privileged and protected by law. Columbus
Stainless does not own and endorse any other content. Views and
opinions are those of the sender unless clearly stated as being that
of Columbus Stainless. The person addressed in the e-mail is the sole
authorised recipient.  Please notify the sender immediately if it has
unintentionally reached you and do not read, disclose or use the
content in any way. Whilst all reasonable steps are taken to ensure
the accuracy and integrity of information and data transmitted
electronically and to preserve the confidentiality thereof, no
liability or responsibility whatsoever is accepted if information or
data is,for whatever reason, corrupted or does not reach its intended
destination.
---------------------------------------------------------------------

Other related posts:

• » 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?
• » Re: 2 Ways to block outbound ICMP?

1. Home
2. isalist
3. Archive
4. 09-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---