How to configure Firestarter firewall on Zenwalk 6.2

More on ICMP Filtering
As mentioned earlier, Firestarter allows ICMP messages by default, with some throttling applied to provide some protection against flood attacks. You may choose to change the default behavior by checking the box next to “Enable ICMP Filtering.”
enable icmp filter

If you “Enable ICMP filtering” without enabling any of the options under “Allow the following ICMP packet types,” all ICMP traffic to the PC will be blocked. Even a ping, an ICMP echo request message type will be blocked. By viewing the blocked messages as shown in the screen shot below, you will see the blocked ICMP traffic hitting the PC.
blocked events

If you must modify Firestarter’s default handling of ICMP traffic, it is recommended that you – at a minimum – allow the following ICMP message types:

  • echo request and echo reply: Echo request and echo reply message types are used by the ping program for testing host reachability.
  • Traceroute
  • (Destination) Unreachable

allow local icmp

Related Posts

Qt + Box2D is easy! Box2D is an Open Source rigid body 2D physics engine for C++. It’s currently (2.0.1) released under the MIT license, which is quite permissive. Box2D ...
Android Touch-Event Hijacking With the recent release of Android 2.3 (Gingerbread), developers can now protect themselves from a new twist on an old bug: TapJacking. Like ClickJack...
Developers: Give us sane and sensible default system and application settings I often wonder why Linux desktops are the way they are. You know, why stuff that's supposed to work out of the box, don't and why some of the better f...
How to deploy OSSEC across a large network of systems from RPMs OSSEC is a Host-based Intrusion Detection System (HIDS). It is Free Software, made available under the GNU General Public License (version 2). It c...
LVM configuration on Openfiler 2.3 Openfiler is one of two free and open source NAS/SAN applications in active development (the other one is FreeNAS). By default, Openfiler is installed...
OpenOffice.org: The Need for Style Office applications like OpenOffice.org can bring out the worst in people. The same people who wouldn’t dream of driving a car without a few lessons w...

We Recommend These Vendors and Free Offers

ContainerizeThis 2016 is a free, 2-day conference for all things containers and big data. Featured, will be presentations and free, hands-on workshops. Learn more at ContainerizeThis.com

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


Leave a Comment

Your email address will not be published. Required fields are marked *

*