On Tue, 04 Jan 2000, you wrote:

Jan 4 11:31:28 hb icmplog: ping from p3E9E066E.dip.t-dialin.net Jan 4 11:31:59 hb last message repeated 31 times Jan 4 11:33:00 hb last message repeated 60 times Jan 4 11:33:49 hb last message repeated 48 times

how can I block icmp pings of a special host and how can I block any incoming ping ?

Greetings on Y2k, You need a kernel compiled with firewall options. On 2.2x you use the ipchains command to apply a rule to the kernel. Create a chain called 'icmp' where the icmp-filter options are. ipchains -N icmp /* ipchains -A icmp -s p3E9E066E.dip.t-dialin.net -d 0/0 -p icmp -j DENY */ ipchains -A icmp -s 0/0 -d 0/0 -p icmp -j DENY // blockz all Block all incoming icmp traffic on device ppp0. ipchains -A input -s 0/0 -d 0/0 -p icmp -i ppp0 -j icmp OR YOU SIMPLE, echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_all

Thanks in advance, Nick

For a nice gui look at gfcc. http://ww.freashmeat.net; search gfcc. OR http://icarus.autostock.co.kr/ -- Mark Ruth Unix Systems Administrator New York, NY, USA Mark.Ruth@gmx.net