Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Friday, June 3, 2016 8:55 PM
I VPN to a unix machine and ping my IP and
10:11pm {~} =>ping 74.125.165.431
PING 74.125.165.431 (74.125.165.431) 56(84) bytes of data
64 bytes from 74.125.165.431 icmp_seq=1 ttl=49 time=41.8 ms
64 bytes from 74.125.165.431 icmp_seq=1 ttl=49 time=36.8 ms
64 bytes from 74.125.165.431 icmp_seq=1 ttl=49 time=39.2 ms
64 bytes from 74.125.165.431 icmp_seq=1 ttl=49 time=41.2 ms
.......<Ctrl> C
I get this message from GRC Shields UP(https://www.grc.com/x/ne.dll?rh4dkyd2):
GRC Port Authority Report created on UTC: 2016-06-03 at 20:44:07
Results from scan of ports: 0-1055
0 Ports Open
0 Ports Closed
1056 Ports Stealth
1056 Ports Tested
ALL PORTS tested were found to be: STEALTH.
TruStealth: FAILED - ALL tested ports were STEALTH,
- NO unsolicited packets were received,
- A PING REPLY (ICMP Echo) WAS RECEIVED.
Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation.
How do I block the ICMP requests with the Windows 10 Firewall? I am using Norton Security and have traffic rules set to Block all ICMP (Ping); Direction: In/Out, Computer: Any, Communications: Specific, Protocol: ICMP
I went through a chat session with Norton Security and they tried to get the block working, but in the end they could not get it to block the ping requests and they suggested the problem was with my ISP (Time Warner Cable) and I should contact them to resolve problem. No luck with Time Warner Cable.
All replies (1)
Monday, June 6, 2016 6:55 AM âś…Answered
Hi Bobo48,
Based on my understanding, you want to block ICMP(ping) packets with windows firewall on Win10, so that attackers can not use ping command to locate your computer.
Then you may create an inbound rule to achieve this:
Open firewall> click advanced settings> right click inbound rules>new rules>Customer>All programs>Protocol type "ICMPv4"> Any IP>Block the connection> Specify the name of the policy.
After applying this policy, other hosts cannot receive ping reply from this computer.
Besides, since WSUS forum is related with Windows update and WSUS issues, I'll move this post to NIS forum, then you may get better help there.
Best Regards,
Anne
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected].