[CentOS] Ping and traceroute...

John R Pierce pierce at hogranch.com
Fri Jan 23 17:52:58 UTC 2009

John Doe wrote:
> Hi everybody,
> Right now, we are blocking pings and traceroutes to our website.
> But, in order for our members to test the connection when they are experiencing slow browsing, we are thinking about unblocking them...
> Are there still any security issues (flooding, etc...) in enabling them or is that an old problem fixed a long time ago?

a denial of service by ping flooding is going to swamp your connection 
whether or not your server ignores them.  if you're paranoid you can use 
iptables to rate limit ICMP responses.

More information about the CentOS mailing list