North American Network Operators Group|
Date Prev | Date Next |
Date Index |
Thread Index |
Author Index |
Re: smurf amp nets
- From: Craig A. Huegen
- Date: Sat Jun 13 15:16:50 1998
On Sat, Jun 13, 1998 at 09:19:13AM -0700, ken emery wrote:
==>Solaris also has this ability. You need to use /usr/sbin/ndd utility to
==>turn this off. The RFC's say that responding to directed broadcast should
==>be on (this has been hashed out here before) so the *nix vendors leave it
==>enabled in the default config.
This is incorrect. The RFC (1122, section 220.127.116.11), states:
An ICMP Echo Request destined to an IP broadcast or IP
multicast address MAY be silently discarded.
This neutral provision results from a passionate debate
between those who feel that ICMP Echo to a broadcast
address provides a valuable diagnostic capability and
those who feel that misuse of this feature can too
easily create packet storms.
There is no SHOULD in there.
www.quadrunner.com/~chuegen/smurf.txt has a few OS vendors who have
either turned replies off by default or have provided an option.