Log ICMP Echo Requests

Discussion in 'ESET Smart Security' started by mqoifyty, Apr 11, 2012.

Thread Status:
Not open for further replies.
  1. mqoifyty

    mqoifyty Registered Member

    Joined:
    Apr 11, 2012
    Posts:
    1
    Hi

    I add a rule to log ICMP traffic (direction=IN, Action=DENY, Protocol=ICMP, LOCAL=for every, Remote=for every, Additional action=LOG). I know this is generic rule and should log any ICMP traffic not only echo requests, but seems there is no option other than that.

    But LOG does not seem to works even if ESS block pings. I test with some online ping services and with ShieldsUP that send some ping requests and it gives me “Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests”. But there is no log record

    I use Windows 7 64bit and ESS 5.0.94.0

    Thanks
     
  2. Marcos

    Marcos Eset Staff Account

    Joined:
    Nov 22, 2002
    Posts:
    14,376
    That's weird cause it works for me. If an ICMP request does not come from the Trusted Zone, it's logged. ICMP is allowed within TZ by default.

    11.04.2012 2:48:45 PM Communication allowed by rule 10.1.100.32 0.0.0.0 ICMP ICMP log C:\WINDOWS\system32\vmnat.exe NT AUTHORITY\SYSTEM
     
Thread Status:
Not open for further replies.