Pinging Firewall

Discussion in 'ESET Smart Security' started by rolly13, Dec 18, 2009.

Thread Status:
Not open for further replies.
  1. rolly13

    rolly13 Registered Member

    Did a test with Shield Up ( http://www.grc.com/x/ne.dll?rh1dkyd2 )to see how my ports are protected by my ESET Smart Securityv 4.0.474.0 and everything was OK. However there was this message:

    "Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation."

    Can I configure ESEt to block attempts to ping me ?

    Tia
     
    rolly13, Dec 18, 2009
    #1
  2. Marcos

    Marcos Eset Staff Account

    Couldn't it be that you are behind a router that responds to ping? ESET firewall doesn't send the RST packet by default, however, as of the firewall build 1053 you can define exceptions for IP addresses that will receive RST when ICMP communication is blocked.
     
    Marcos, Dec 18, 2009
    #2
  3. rolly13

    rolly13 Registered Member

    No router.
     
    rolly13, Dec 18, 2009
    #3
  4. ggaavv

    ggaavv Registered Member

    I also did a test with Shield Up. I'm using ESET Smart Security v 4.0.467.0 and I got;
    Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.

    I too do not use a router.

    How can I fix this?

    Thanks
     
    ggaavv, Dec 26, 2009
    #4
  5. no_idea

    no_idea Registered Member

    Not replying to ping requests doesn't make you "invisible"!
    Quite the contrary: Dropping ping packets is like holding up a big I'm here busyly trying to hide something-sign up in the air.

    Not responding to a ping packet is a clear indication of a system present at this address. If there were no system, the router would respond with destination unreachable. Since the ping packet simply times out, there must be a system actively dropping the packet.

    I wouldn't exactly call that "hidden" or "stealthed" - would you?

    So, relax and be a good member of the Internet community: Don't try to hide (you can't anyway - at least not by "stealth") let your system respond to ping packets. As long as all other really rogue requests are denied, the firewall is working A-ok.
     
    Last edited: Dec 27, 2009
    no_idea, Dec 27, 2009
    #5
  6. rolly13

    rolly13 Registered Member

    Thanks
     
    rolly13, Dec 27, 2009
    #6
  7. Stem

    Stem Firewall Expert

    From my point of view, a firewall is primarily a packet filter. As such it should give the options to control any/all ICMP(or any other packet) leaving or entering the system.

    I have made posts before concerning the lack of filtering for ICMP.

    - Stem
     
    Stem, Dec 27, 2009
    #7
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice