There are times when a hacker sends ICMP messages in a huge quantity due to which the network gets completely jammed and the server is not accessible over the network. This scenario is commonly known as an ICMP flood.
In such cases, to stop such an ICMP flood we should first stop the ping for the server’s IP address.
To stop the ping of the server’s IP addresss, use the command below:-
Go to the file /etc/sysctl.conf and use “Change the value” for the below as mentioned :-
net.ipv4.icmp_echo_ignore_all = 1
and then run the command sysctl -p
or you can directly run the command below to set the value in the file :-
echo “1” > /proc/sys/net/ipv4/icmp_echo_ignore_all
Once the ping request for the server has been disabled, the ICMP flood goes down and all the
services except ping are functioning normally.
]]>