Why is --icmp-type required?
Jeffrey W. Baker
jwbaker@acm.org
Fri, 17 Nov 2000 14:35:23 -0800 (PST)
On Fri, 17 Nov 2000, Jeffrey W. Baker wrote:
> Hello again,
>
> I have noticed that this rule doesn't work:
>
> iptables -A INPUT -p icmp -j DROP
>
> With the above rule, the machine still responds to ping requests. This
> rule works:
>
> iptables -A INPUT -p icmp --icmp-type echo-request -j DROP
>
> So, is this a bug or is there really no way to specify all ICMP
> types?
Ignore me. I was accidentally pinging the alleged firewall machine from
*inside* my private network.
Sorry. -jwb