WinGate Forums

WinGate Proxy Server and other Qbik products

Skip to content

Ping not being ignored

Use this forum to post questions relating to WinGate, feature requests, technical or configuration problems

Moderator: Qbik Staff

Post a reply

Ping not being ignored

Postby maxthegold » Sep 12 04 7:25 pm

I am using the latest version of WIngate, I have the Firewall option "Allow users to ping this machine from the internet" unchecked. When I test my security using Shields-Up (www.grc.com), it tells me "Your system REPLIED to our Ping (ICMP Echo) requests". Why is this?

Regards,
Mark.
maxthegold
 
Posts: 13
Joined: Jul 14 04 3:24 pm
Location: Australia
Top

Postby genie » Sep 12 04 10:19 pm

Make sure that the adapter usage is correct (internal/external).
genie
Qbik Staff
 
Posts: 1788
Joined: Sep 30 03 10:29 am
Top

Postby maxthegold » Sep 13 04 2:12 pm

My adapter is an ADSL modem connected via ethernet and I have it defined as external.
maxthegold
 
Posts: 13
Joined: Jul 14 04 3:24 pm
Location: Australia
Top

Postby genie » Sep 13 04 2:14 pm

Right - then it is possible that the IP address that GRC sees is not the IP of your machine but rather the IP of your ADSL modem/router which can be pinged because WG does not have control over it.
genie
Qbik Staff
 
Posts: 1788
Joined: Sep 30 03 10:29 am
Top

Postby maxthegold » Sep 13 04 7:13 pm

Thought it might be something like that. I discovered that I was better off not using firewall features of my modem and letting Wingate handle it instead, it did a much better job.
maxthegold
 
Posts: 13
Joined: Jul 14 04 3:24 pm
Location: Australia
Top

Postby adrien » Sep 14 04 11:59 am

One other thing.

Check that the IP reported by GRC is correct for you.

For instance, many ISPs nowadays pipe all web requests through a transparent proxy. So, when you connect to the GRC website, they think your IP address is the address of the transparent proxy. So if that machine has pings allowed, then it will show up in the test.

Adrien
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland
Top

Postby Nev » Sep 14 04 9:10 pm

adrien wrote:One other thing.

Check that the IP reported by GRC is correct for you.

For instance, many ISPs nowadays pipe all web requests through a transparent proxy. So, when you connect to the GRC website, they think your IP address is the address of the transparent proxy. So if that machine has pings allowed, then it will show up in the test.

Adrien


Hi all,

Interesting thread and I guess the 'acid test' is when utilising the 'Common ports' test at GRC, Wingate will respond:


Time: 14/09/2004 18:11:18
Reason: Port Range
Source MAC address: 00-00-5F-63-6A-28
Destination MAC address: xx1234567890xx
Source IP address: 204.1.226.228 : N/A
Destination IP address: xxx.xx.x.xxx : N/A
Protocol: ICMP
Time-to-live: 116

If and only if the echo request isn't obsrtucted elsewhere, such as ISP proxy etc.

Nev.
Nev
WinGate Guru
 
Posts: 861
Joined: Sep 22 03 11:35 pm
Location: Mudgee ~ NSW ~ Australia
Top

Postby maxthegold » Sep 15 04 10:48 am

Nev,
Where do you find that information?

Mark.
maxthegold
 
Posts: 13
Joined: Jul 14 04 3:24 pm
Location: Australia
Top

Postby Nev » Sep 16 04 12:22 am

maxthegold wrote:Nev,
Where do you find that information?

Mark.


G'day,

The firewall has a right click option, hover over any hit and > Right click to clipboard > paste in compose window to read / save.

Cheers,
Nev.
Nev
WinGate Guru
 
Posts: 861
Joined: Sep 22 03 11:35 pm
Location: Mudgee ~ NSW ~ Australia
Top

Postby adrien » Sep 16 04 2:59 pm

I take it from the fact that it showed up in the firewall, means that the ping packet washed up against the firewall and was blocked.

Adrien
adrien
Qbik Staff
 
Posts: 5448
Joined: Sep 03 03 2:54 pm
Location: Auckland
Top
Post a reply

Return to WinGate

Who is online

Users browsing this forum: No registered users and 2 guests

Switch to mobile style
Powered by phpBB® Forum Software © phpBB Group