Disable the ping command in Windows (Disable ICMP access)
Source: Internet
Author: User
How to disable inbound traffic, how to disable the ping command, and how to disable the ping command is a dangerous command. You can use it to know your operating system, IP address, and so on, ping protection is a good method to prevent DDoS attacks. There should be an external network trying to connect to your UDP port 1434. I don't know if you have patched it.
During hacker intrusion, most hackers use the ping command to detect the host. If the ping fails, most "hackers" with poor levels will find it difficult to return. In fact, it can completely create a false picture. Even if we are online, the other party cannot communicate with each other during Ping, so as to avoid many attacks. Step 1: add an independent management unit to start-run. Enter MMC to start the "console" window. Click "Add/delete Management Unit" under the "console" menu and click "add". In the displayed window
Select "IP Security Policy Management" and click "add. In the displayed window, select "Local Computer" as the management object, click "finish", close the "Add/delete Management Unit" window, and return to the console. Step 2: Create an IP Security Policy, right-click the added "IP Security Policy", select "create IP Security Policy", and click "Next ", enter a policy description, such as "No
Ping ". Click "Next", select "Activate default response rule", and click "Next ". Start setting the authentication method and select "this string is used to protect key exchange (pre-shared key )"
Option, and then enter some characters (these characters are also used below ). Click "Next". A message is displayed, indicating that the IP Security Policy has been completed. confirm that the "Edit attributes" check box is selected and click "finish,
The Properties dialog box is displayed. Step 3: configure the security policy and click "add". In the security rule open wizard, click "Next" to configure the tunnel termination. Here, select "this rule does not specify a tunnel ". Click "Next" and select "all"
Network Connection "to ensure that all computers cannot be pinged. Click "Next", set the authentication method, and select the third option "this string is used to protect key exchange (pre-shared key)" as above )"
And enter the same content as the previous one. Click "Next". In the displayed window, click "add" to open the "IP Filter list" window. Click "add", click "Next", and set the source address to "I"
Click "Next", set the target address to "any IP Address", click "Next", and select ICMP as the Protocol, now you can click "finish" and "close" to return. This
You can see the created filter in the IP Filter list, select it, click "Next", and select the filter operation as" Require security settings "Option, and then click" finish "and" close"
Button to save the relevant settings and return to the Management Console Step 4: assign a security policy and then right-click the configured "Ping prohibited" policy in "Console Root Node, select the "Assign" command to make the configuration take effect. After the above settings, when other computers ping the computer again
Again. However, if you ping the local computer, you can still communicate with each other. This method is effective for Windows 2000/XP
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.