|
Title: prevent Firewall from blocking ICMP Post by: lygie on Wednesday 10 December 2008, 08:43:47 pm Hallo,
I am trying to monitor an endian firewall from outside the network with icmp (ping) I always get a huge amount of package lost. As the connections from inside the network to the internet are fine in the same time, it seems, that the firewall is blocking some of the icmp packages. Is there a possibility to allow all icmp pakeges being answered? Yours sincerely Title: Re: prevent Firewall from blocking ICMP Post by: blobbi on Wednesday 10 December 2008, 08:49:34 pm Hi,
do you have Snort/IDS activated? maybe efw thinks the ping is some Intruder and block it. greets Title: Re: prevent Firewall from blocking ICMP Post by: lygie on Thursday 11 December 2008, 01:28:34 pm Hallo blobbi,
yes IDS is aktivated. I get messages like "ICMP Destination Unreachable Communication Administratively Prohibited" but deactivating IDS does not solve the problem. If i understand it right, ids just notices that icmp to my ip is prohibited. My problem is, that i want to allow this. Yours sincerely |