Hacker News new | ask | show | jobs
by BenjiWiebe 1723 days ago
Please don't block ttl exceeded packets... It will cause some very hard to troubleshoot network issues for someone somewhere sometime.
2 comments
kjs3 1723 days ago
Amen, brother. Someone like your CEO at somewhere like his lake house at the end of a dodgy DSL line from Cletus's ISP and Bait Shop.

I kid, I kid...they didn't sell bait.

There are a lot of unpleasant failure modes to blocking ICMP without completely understanding the implications.

link
throw0101a 1723 days ago
I agreeā€¦ but some folks seem to think blocking ping and traceroute give you some kind of extra security.
link