Open for Voting

ability to use ICMP Echo for Netpath services

Some devices only respond to ping...I use NetPath not just for webservices, but all external devices that connect my network...it builds a better view of my network than any other tool Solarwinds has.

shuckyshark
Parents

  • My thought is that there's nothing I'm aware of (and I'm unaware of LOADS of things!) that you'd want to monitor that operates SOLELY via ICMP.  And if a devices uses something BESIDES ICMP, then it probably uses at least one TCP port that NetPath can use.  Setting up NetPath to use that port will accomplish whatever anyone would want from a NetPath that can use ICMP. 

    And the benefit of NOT using ICMP is getting the actual and predicted path of the TCP packet, instead of the varied and inconsistent paths that ICMP may take.

    If a path / service / device doesn't ONLY use ICMP, then simply set up NetPath to use whatever TCP ports it CAN use, and you'll get the information you need.

    Now, everyone dump on me for my ignorance, and tell me which devices and services and applications ONLY use ICMP.  I submit that they all probably also use at least one TCP port, and if so, then NetPath has validity exactly as it's built.

  • in reply to rschroeder

    When I  saw this I thought it was a reasonable request, however I will also be casting a nay vote. As you mentioned, icmp is blocked at firewalls since it can be used in DOS and DDOS attacks. I allow ICMP in through the firewall to and from specific sources because it is inherit in the applications nature to first ping to see if there is a device then to proceed with it task, like a vulnerability scanner. The only time consuming part is to be able to determine what TCP port a destination has open and listening that will respond to polls from NetPath Services. It takes a lot of trial and error, creating and deleting when I have looked to create this helpful NetPaths.

Comment
  • in reply to rschroeder

    When I  saw this I thought it was a reasonable request, however I will also be casting a nay vote. As you mentioned, icmp is blocked at firewalls since it can be used in DOS and DDOS attacks. I allow ICMP in through the firewall to and from specific sources because it is inherit in the applications nature to first ping to see if there is a device then to proceed with it task, like a vulnerability scanner. The only time consuming part is to be able to determine what TCP port a destination has open and listening that will respond to polls from NetPath Services. It takes a lot of trial and error, creating and deleting when I have looked to create this helpful NetPaths.

Children
No Data

SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.

SolarWinds Customer Success Center Certification Media Vault Link Accounts
About THWACK Blogs For Government Edit Settings Free Tools & Trials
Legal Documents Terms of Use Privacy California Privacy Rights Security Information
©2024 SolarWinds Worldwide, LLC. All Rights Reserved.