My vote is to block it. I 'primitive' is an accurate description of
the effectiveness of icmp source-quench. :-)
At 04:26 AM 6/5/96 PDT, Bob Konigsberg wrote:
>I've noticed a lot of ICMP Source Quench packets in my firewall logs. They
>are (or were more precisely) outbound. My references say that this is a
>primitive form of flow control. What are people's experiences with allowing
>this as an outbound packet. I don't see any security risk offhand, but
>I'd like to know what others have seen. Does anyone know of any security
>weaknesses related to Source Quench?
Paul Ferguson || ||
Consulting Engineering || ||
Reston, Virginia USA |||| ||||
tel: +1.703.716.9538 ..:||||||:..:||||||:..
e-mail: pferguso @
com c i s c o S y s t e m s