Ubuntu: block icmp requests (from fixed network)


On my linux box I've 2NICS:

br0 ( server)  eth1 lan1  eth2 lan  [...]  

there's a routing from eth1 to br0 and also from eth2 to br0

I droppped icmp requests on eth1:

iptables -A INPUT -i eth1 -p  icmp --icmp-type echo-request -j DROP  

but I also want block icmp requests ONLY from network on


Sounds like the below rule should be your fix:

iptables -A INPUT -s -d -p icmp --icmp-type echo-request -j DROP

Anything from source with destination with protocol icmp with type echo-request will be DROP'd.

Hope this helps.

