[CentOS] Ping and traceroute...
John R Pierce
pierce at hogranch.com
Fri Jan 23 17:52:58 UTC 2009
John Doe wrote:
> Hi everybody,
> Right now, we are blocking pings and traceroutes to our website.
> But, in order for our members to test the connection when they are experiencing slow browsing, we are thinking about unblocking them...
> Are there still any security issues (flooding, etc...) in enabling them or is that an old problem fixed a long time ago?
a denial of service by ping flooding is going to swamp your connection
whether or not your server ignores them. if you're paranoid you can use
iptables to rate limit ICMP responses.
More information about the CentOS