I need to create a rule to block ping reply. I was thinking that would be enought to throught system rules on firewall and put allow ping inactive but it isn´t.
You can check on Gibson Institute : https://www.grc.com/
Can you help me to create the rule on local router firewall please?
I incorrectly writed Avast but was meant to write off course my local router firewall, and yes the router has a firewall! I´m doing right now on the router firewall. This is not a gateway DSL but a local router behind a ONT. So the ONT gives acess to internet and Local router gives a home management
Beacuse as you may know someone can acess your network using this ping reply throught ICMP protocol in order to use exploits to gain acess and by turning ICMP echo ping reply off, as it should always be its harder for someone to do this.
Pondus’ first article is pretty decent, so I recommend you read it.
The last RCE I’m aware of for ICMP is from 2011, and that was under Magneto. I doubt you’re running an eCommerce website on a local home network… Why, are you looking to block ping requests? Any attacker with the skills to use RCE’s and whatnot is not going to be focusing on a small, home network.
My advice at the end of the day is too simply leave it. Unless you’re a networking god, you shouldn’t be playing with it. (And given that you’re on the forums asking for help, I’m guessing you’re not god.) Regardless of skill level, ICMP is required in IPv6 implementations, and I should remind you, the world is out of IPv$ addresses that haven’t been claimed.