HPE Community
Operating System - HP-UX
1832282 Members
1843 Online
110041 Solutions
New Discussion

Message icmp in Firewall

 
SOLVED
Go to solution
Jose_129
Regular Advisor

‎09-10-2004 11:20 AM

‎09-10-2004 11:20 AM

Message icmp in Firewall

I have a server rp7405 and the administrator of the network informs to me that log into firewall this reporting messages ICMP produced by the server every three minutes approximately. It is normal?

Regards,

Jose
Change password in way single user, beginning in multiuser way console
0 Kudos
Reply
4 REPLIES 4
Jose_129
Regular Advisor

‎09-13-2004 04:13 AM

‎09-13-2004 04:13 AM

Re: Message icmp in Firewall

Any news

JC
Change password in way single user, beginning in multiuser way console
0 Kudos
Reply
Ron Kinner
Honored Contributor

‎09-14-2004 10:37 AM

‎09-14-2004 10:37 AM

Re: Message icmp in Firewall

What you are seeing is normal. It is a function of the Dead Gateway Detection. HPUX pings a gateway every 3 minutes to see if it is still alive. If the gateway doesnot reply then HPUX will assume it is dead and will not send any packets to it.

You can turn it off with ndd.

ndd -set /dev/ip ip_ire_gw_probe 0


To make the change permanent you can edit /etc/rc.config.d/nddconf

TRANSPORT_NAME[0]=ip
NDD_NAME[0]=ip_ire_gw_probe
NDD_VALUE[0]=0

(Use the next higher integer if you already have entires in nddconf.)

Ron
0 Kudos
Reply
Jose_129
Regular Advisor

‎09-15-2004 06:16 AM

‎09-15-2004 06:16 AM

Re: Message icmp in Firewall

Ron Kinner,

I will have any problem in setting a ip_ire_gw_probe 0.

Regards,

JC
Change password in way single user, beginning in multiuser way console
0 Kudos
Reply
Ron Kinner
Honored Contributor

‎09-16-2004 04:58 AM

‎09-16-2004 04:58 AM

Solution

Re: Message icmp in Firewall

No. The dead gateway feature is just an optional feature that HP decided to turn on by default. By pinging the gateway every three minutes it will know that the gateway is dead and will possibly use an alternative (though how it decides what to use I do not know. You would think that the metric would be used in this case but I have been told that it doesn't look at it except when gated is running.) Most people who require this degree of reliability will run two routers with HSRP. Turning it off only removes the feature. It does not effect anything else.

Ron
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.