Saturday, April 16, 2011

How to Enable or allow ICMP ping incoming client request in Linux csf firewall

once you installed Linux based firewall CSF and after installation your ping request has been blocked or it shows that packet are dropping at 80% or some time 90% , You need to reconfigure your firewall and here is the method of it

Rule to enable ICMP ping incoming client request ( assuming that default iptables policy is to drop all INPUT and OUTPUT packets)


iptables -A INPUT -p icmp –icmp-type 8 -s 0/0 -d $SERVER_IP -m state –state NEW,ESTABLISHED,RELATED -j ACCEPT

iptables -A OUTPUT -p icmp –icmp-type 0 -s $SERVER_IP -d 0/0 -m state –state ESTABLISHED,RELATED -j ACCEPT

Restart your firewall

World's greatest web hosting guide