WatchGuard : ICMP Error Handling - 'host-unreachable'

Gavin M. Dennis

22 April 2022 01:58

Details

ICMP Error messages can be used as a means to compromise sytems and networks. Appropriate configuration and filtering of these messages should be used to reduce potential threats.

Solution

In the Web UI navigate to the 'System' - > 'Global Settings' - > 'Networking' section. Uncheck the box for 'Host unreachable'.

Supportive Information

The following resource is also helpful.

https://www.sans.org/security-resources/idfaq/icmp_misuse.php

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system WatchGuard.

References

800-53|SC-7

Source

Tenable.com/audits

PS. Before you go.

Request a quote to protect your organisation from cyber attacks and breaches.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.

Articles in this section