When it comes to PCI compliance, some vulnerability scans will require the disabling of Internet Control Message Protocol (ICMP) monitoring to ensure the greatest level of security. This setting can be easily disabled within the Windows Firewall.
Please be aware that disabling this setting will cause the server to not respond to ‘ping’ requests, and can cause the server to appear to be offline.
First, open up the Windows Firewall settings by navigating to ‘Start –> Control Panel –> Windows Firewall‘.
Once open, click on the ‘Advanced‘ tab.
Within the ‘Advanced‘ window, click on the ‘Settings‘ button under the ‘ICMP‘ heading.
The first setting within the window is ‘Allow incoming echo request‘. Remove the check-mark and click OK, and then click OK again to close the Firewall settings window.
As mentioned, this setting should only be disabled when it is required to meet very specific PCI Compliant standards, and is not typically disabled on most public facing servers. Many Internet monitoring services, including Server Intellect’s monitoring services, rely on routine successful ping requests to verify that a server is up and running. If ICMP monitoring is disabled, the server will not respond to ping requests and appear to be offline.
If you have any questions or concerns about disabling ICMP monitoring or any other firewall settings, please don’t hesitate to contact our Technical Support Department, and they will be more than happy to assist you.