question, possible prob

BobBrainy

BobBrainy

BobBrainy

Associate
Joined
23 Mar 2007
Posts
321
Ok I'm a noob and really could do with some advise.

Ok I went to shields up! webby and it told me I had all ports stealthed but recieved a response from ICMP Echo Request. This seems to have occured since I updated my firmware on my router safecom sbru-10100.

I don't know if this is a problem or not, I went and used the symantec hacker/scan program online and that reported the same ICMP response as well as reporting 2 open ports, but I haven't manually opened any myself.

Any light can be shed on all of this? I would appreciate it.
 
Perhaps see if the router now has an option to block ICMP ping, my one does in the firewall options. Port wise, what ports was it that were open, as it may for example be the internet port or ftp port.
 
ICMP not really an issue - I can disable mine, but I haven't.

22 and 80 sound like external managment - i.e. your router can be configured from the outside world. Not so wise, unless you really need to. Should be possible to disable this.
 
Blocking ICMP completely is a bad thing - for one, it'll break Path MTU Discovery.

Blocking ports 22 and 80 might be more useful, but I'd ignore Shields Up's scaremongering about ICMP...
 
well i have mine set this way and have 0 problems and get a constant 7.5 - 8Mb/s on adslmax with mtu set at 1500 if its worying the guy let him set it if it causes problems unselect it - simple
 
5punk3monk3y said:
well i have mine set this way and have 0 problems and get a constant 7.5 - 8Mb/s on adslmax with mtu set at 1500 if its worying the guy let him set it if it causes problems unselect it - simple
Click to expand...
So what do you believe are the advantages of disabling ICMP reply?
 
csmager said:
So what do you believe are the advantages of disabling ICMP reply?
Click to expand...

ok if he is going to be using traceroute has line latency etc but i dont think he wants this basically he asked this question
BobBrainy said:
Ok I'm a noob and really could do with some advise.

Ok I went to shields up! webby and it told me I had all ports stealthed but recieved a response from ICMP Echo Request. This seems to have occured since I updated my firmware on my router safecom sbru-10100.

I don't know if this is a problem or not, I went and used the symantec hacker/scan program online and that reported the same ICMP response as well as reporting 2 open ports, but I haven't manually opened any myself.

Any light can be shed on all of this? I would appreciate it.
Click to expand...


I have the same router after blowing the psu's on my other two routers (had three of these safecom's for free lol and a terrible netgear router which i gave away) and from the original post he wishes to acchieve the true stealth analysis this will help him to achieve this
 
5punk3monk3y said:
ok if he is going to be using traceroute has line latency etc but i dont think he wants this basically he asked this question
Click to expand...

It won't affect traceroute from the LAN anyway - the router won't respond to ICMP Echo Requests from the WAN side.

The "true stealth analysis" is crap, and so is the Shields Up website. Unless you're a paranoid nutjob, there's no good reason to block ICMP on the WAN side, and plenty of good reasons not to.
 
You must log in or register to reply here.
Back
Top Bottom