HPE Community
Operating System - HP-UX
1825766 Members
2137 Online
109687 Solutions
New Discussion

Turn off HP-UX ICMP to gateway? (points!)

 
SOLVED
Go to solution
Christian Deutsch_1
Esteemed Contributor

‎07-01-2007 11:09 PM

‎07-01-2007 11:09 PM

Turn off HP-UX ICMP to gateway? (points!)

Hi folks,

If I got this right, by default, HP-UX sends ICMP packets to the gateway before e.g. an ssh connection can be established via the gateway.

If I wanted to configure the gateway's firewall to discard all ICMP packets, is it possible to configure HP-UX such that it will not try to send ICMP packets to the gateway and then refuse to allow ssh to connect through the gateway?

Interestingly Solaris does not send such ICMP packets by default (if I got that right).

Points will be assigned for all helpful answers.

Thanks, Christian
Yeshua loves you!
0 Kudos
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎07-01-2007 11:11 PM

‎07-01-2007 11:11 PM

Solution

Re: Turn off HP-UX ICMP to gateway? (points!)

Shalom Christian,

This is the default behavior of HP-UX 11.00.

It can be changed with the ndd command or permanently in /etc/rc.config.d/nddconf

ndd -set /dev/ip ip_ire_gw_probe 0

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Christian Deutsch_1
Esteemed Contributor

‎07-01-2007 11:24 PM

‎07-01-2007 11:24 PM

Re: Turn off HP-UX ICMP to gateway? (points!)

Shalom Steven,

Perfect!

Toda rabba :-)

Would this then be the correct entry for nddconf?

TRANSPORT_NAME[0]=/dev/ip
NDD_NAME[0]=ip_ire_gw_probe
NDD_VALUE[0]=0

Christian
Yeshua loves you!
0 Kudos
Luk Vandenbussche
Honored Contributor

‎07-01-2007 11:40 PM

‎07-01-2007 11:40 PM

Re: Turn off HP-UX ICMP to gateway? (points!)

Christian,

The correct entry is


TRANSPORT_NAME[0]=ip !!! (without /dev)
NDD_NAME[0]=ip_ire_gw_probe
NDD_VALUE[0]=0

0 Kudos
Christian Deutsch_1
Esteemed Contributor

‎07-01-2007 11:45 PM

‎07-01-2007 11:45 PM

Re: Turn off HP-UX ICMP to gateway? (points!)

Thanks Luk,

This one was a simple question so only 5 points, sorry...

Christian
Yeshua loves you!
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.