SUMMARY: Disable Echo Reply

From: Martin D. Baldenegro (RRNC) (mdb@cwiz.com)
Date: Sat Apr 12 2003 - 13:50:21 EDT

• Next message: Anthony Firmin: "Finding out kernel parameter settings?"
• Previous message: Sun Sol: "SCSI CARD ULTRA 5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

  Sun Managers,

  Thanks to all the folks that replied, especially Sean Quaint
  who's reply headed me in the right direction. What I did on the
  system was to set the parameter ip_respond_to_echo_broadcast to
  zero with the ndd -set command. I also added the entry into the
  /etc/rc2.d/S72inetsvc file.
  
  Command:
  ndd -set /dev/ip ip_respond_to_echo_broadcast 0
  
  This solved the problem until I replace my old Ascend Pipeline router.
  
  Thanks to:
  "Jonathan V Hays" <jhays@jtan.com>
  "Steve Armijo" <armijo@subgeni.us>
  "Arzola, Nelson" <narzola@seattleschools.org>
  Casper Dik <Casper.Dik@Sun.COM>
  Steve Maher <steve@marzconsulting.com>
  Al Hopper <al@logical-approach.com>
  "Preston, Mark" <mpreston@soe.sony.com>
  Tim Wort <tim@pobox.com>
  
  Again thanks to all,
  
          /mdb
          
          
  The original problem:
  
> Sun Managers,
>
> I keep getting the following on several of the systems in my
> network. I have commented out the echo lines in both the
> /etc/inet/services and in /etc/inet/inetd.conf but I can not
> seem to stop the DOS on my network. The below output goes on
> for several hours and has basically put the network at a crawl.
>
> The systems are running Solaris 8 and 9 different updates.
>
> Anyone else run into this problem, and what else can be done to
> prevent echo replys from the systems inside the network.
>
> TIA,
>
> /mdb
>
> -----snoop output -----
> www.recomp.tv -> xxx.xxx.xxx.255 UDP D=23920 S=5192 LEN=9
> www.recomp.tv -> xxx.xxx.xxx.0 UDP D=35903 S=56090 LEN=9
> www.recomp.tv -> xxx.xxx.xxx.255 ICMP Echo request (ID: 0 Sequence number:
0)
> maya -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> navajo -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> dosmanos -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> apache -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> azteca -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> printsrv -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> yakii -> www.recomp.tv ICMP Echo reply (ID: 0 Sequence number: 0)
> www.recomp.tv -> xxx.xxx.xxx.0 UDP D=50403 S=35197 LEN=9
> www.recomp.tv -> xxx.xxx.xxx.255 UDP D=52890 S=62425 LEN=9
>

===============================================================
Martin D. Baldenegro (RRNC)
Cwiz Resources, Inc.
Re-Thinking Knowledge
Westminster, CO. 80020-8723
Direct Phone #: 303-478-4790
E-mail: mailto:mdb@cwiz.com
===============================================================
" Do Not Squander Time, For That Is The Stuff Life Is Made Of "
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: Anthony Firmin: "Finding out kernel parameter settings?"
• Previous message: Sun Sol: "SCSI CARD ULTRA 5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:26:11 EDT