I've scanned my ASL 2.019 firewall using ISS Internet Security Scanner. It brought me two issues where I can't make it to get rid of them. They are:
1. IcmpTstamp: ICMP timestamp requests
Configure your firewall or filtering router to block outgoing ICMP packets. Block ICMP packets of type 13 or 14 and/or code 0.
2. traceroute: Traceroute can be used to map network topologies
Prevent or limit external tracerouting into internal networks using packet filtering.
Unix: The Unix version of Internet Scanner uses UDP packets to conduct a traceroute. Disallow incoming UDP packets with
high-numbered destination ports. For more information, refer to your firewall documentation. ICMP packets are not found by Unix.
Windows NT: The Windows NT version of Internet Scanner uses ICMP to conduct a traceroute. Disallow incoming ICMP packets with
high-numbered destination ports. For more information, refer to your firewall documentation. UDP packets are not found by Windows
NT.
Note: Because the Unix and NT versions of Internet Scanner use different methods for traceroute, this vulnerability may occasionally be
found by one version and not the other.
I've tried everything that they suggest here, but it doesn't help. Has anyone got any idea ?
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
