Windows 8 and 8.1 Forums


Windows 8.1 - Disabling Ping

  1. #1


    Posts : 78
    Windows 8.1 64-bit

    Windows 8.1 - Disabling Ping


    Hello everyone,
    I am was reading about how DNS on local machines can actually help malware. So I wanted to disable DNS on my local machine completely. That is to say when I execute
    Code:
    ping www.google.com
    from cmd.exe I should get the message could not resolve. How do I do this ? Now obviously I don't want to disable the "Request Timed Out" Message. Since I was reading that it leads to problems in the network. I want to disable DNS from ping completely without any unwanted side-effects to my network. How do I that ?

      My System SpecsSystem Spec

  2. #2


    DNS can only be enabled or disabled on a global basis. You cannot choose to have DNS enabled but not allow ping to use it. DNS is an essential service for any computer that has Internet access.

    Or have I misunderstood your question?
      My System SpecsSystem Spec

  3. #3


    Posts : 78
    Windows 8.1 64-bit


    Quote Originally Posted by LMiller7 View Post
    DNS can only be enabled or disabled on a global basis. You cannot choose to have DNS enabled but not allow ping to use it. DNS is an essential service for any computer that has Internet access.

    Or have I misunderstood your question?
    Are you saying that if I disable DNS I will lose Internet access ? I have seen PCs where you cant run ping but have access to the Internet. Isn't DNS done by the DNS servers I specify in my Internet configuration ? Why is there specific services for DNS in Windows then ?
      My System SpecsSystem Spec

  4. #4


    Are you saying that if I disable DNS I will lose Internet access ?
    For all practical purposes, yes.

    But DNS and ping are 2 VERY different things.
    I believe you can disable ping in the Windows firewall but unsure as to how. Is that what you are wanting to do?
      My System SpecsSystem Spec

  5. #5


    Quote Originally Posted by sreyan32 View Post
    Hello everyone,
    I am was reading about how DNS on local machines can actually help malware. So I wanted to disable DNS on my local machine completely. That is to say when I execute
    Code:
    ping www.google.com
    from cmd.exe I should get the message could not resolve. How do I do this ? Now obviously I don't want to disable the "Request Timed Out" Message. Since I was reading that it leads to problems in the network. I want to disable DNS from ping completely without any unwanted side-effects to my network. How do I that ?
    If you cannot resolve a DNS name, you will never be able to use the Internet again as your computer wouldn't be able to determine what www.eightforums.com would resolve to. There is no benefit to what you think you want to do.
      My System SpecsSystem Spec

  6. #6


    Posts : 328
    Windows 8.1 (x64)


    Advanced Settings > Inbound Rules > New Rule > Custom > All Programs > Protocol Type : ICMPv4 + Customize > Specific > Echo Request > OK
    Next > Any Ip or select appropriate ones > Block Connection > Apply to whatever domain you want > FinishRepeat this procedure with ICMPv6 if you're using it too.

    If you have a hardware router this can usually be done via its settings too. On mine it takes a few clicks, much easier than Windows Firewall.

    Ping can be used to check if your system is there basically. It can be used by malicious users of course, but as it is, it's only a harmless tool. Kind of like a thief calling your house to see if you're home. Not really a good reason to get rid of phones, is it ? (Yes I have Ping disabled on my own PCs, but I'm paranoid and I've accepted that)
      My System SpecsSystem Spec

  7. #7


    Posts : 78
    Windows 8.1 64-bit


    Quote Originally Posted by oneeyed View Post
    Advanced Settings > Inbound Rules > New Rule > Custom > All Programs > Protocol Type : ICMPv4 + Customize > Specific > Echo Request > OK
    Next > Any Ip or select appropriate ones > Block Connection > Apply to whatever domain you want > FinishRepeat this procedure with ICMPv6 if you're using it too.
    Is the following rule that you have given here used for blocking someone who pings my computer from within my network ? Because After applying the rule I can still use ping to ping google.com and my local DNS. Also does blocking ping cause any adverse effects in the network ?
    Quote Originally Posted by oneeyed View Post
    Ping can be used to check if your system is there basically. It can be used by malicious users of course, but as it is, it's only a harmless tool. Kind of like a thief calling your house to see if you're home. Not really a good reason to get rid of phones, is it ? (Yes I have Ping disabled on my own PCs, but I'm paranoid and I've accepted that)
    You can never be too careful these days. Tell me something, in your opinion does blocking ping actually help ? I mean what are the types of malicious attacks can be done with the help of ping and how does blocking the inbound ping request stop them ?
      My System SpecsSystem Spec

  8. #8


    Typically the firewall would not effect internal network activities. I believe that Windows firewall will normally only block incoming pings, not outgoing. Ping is a relatively minor security risk. Most systems have more serious problems.

    Ping is a non essential function and can be disabled with no adverse effects. Many websites (including most operated by Microsoft) block incoming pings as a security measure. But security on a well known and highly used website and security on a home network are very different things.
      My System SpecsSystem Spec

  9. #9


    Joisey
    Posts : 315
    Windows 8.1 consumer 64 bit


    Quote Originally Posted by sreyan32 View Post
    You can never be too careful these days. Tell me something, in your opinion does blocking ping actually help ? I mean what are the types of malicious attacks can be done with the help of ping and how does blocking the inbound ping request stop them ?
    Ping is not a vulnerability in itself, but a response to a ping lets a potential attacker know that you are there and he can then bring all guns to bear on your IP address and let you have it with his arsenal of attacks.
      My System SpecsSystem Spec

  10. #10


    Trnava
    Posts : 683
    Win 8.1.1 Pro x64


    Quote Originally Posted by sreyan32 View Post
    I am was reading about how DNS on local machines can actually help malware.
    Was not that related to DNS caching? You can disable DNS Cache service safely, just set DNS manually.
    I have disabled so much, that Windows thinks, that there is no network, Windows Update or ping fail too.

    But disabling ping locally does not do anything, if you are online, you are traceable, but I would not worry about it, as long as you have ports closed, there is not much a hacker can do. Closed by a router or stealthed by a firewall, it is all the same. Actually, if you fail to respond a ping with destination unreachable, it will send a clear message, I am here, but I am hiding, it will draw an attention, so it is kind of counterproductive.
    Attached Thumbnails Attached Thumbnails capture_07302014_125813.jpg   capture_07302014_125625.jpg  
      My System SpecsSystem Spec

Windows 8.1 - Disabling Ping
Related Threads
I use sysprep tool to reset my computer. And I successfully boot into windows desktop. The problem is that I can't use Internet , chrome ,IE, Skype ,all programs are offline ,but the strange part is ,I can ping Windows 8 Forum ,which means my network and dns is ok. And I can't even go to...
Good morning, As title says, I can ping our work server (windows 8 server) as well as connect to it using a remote desktop connection, it just won't map as a network drive. I had this problem a few days ago, so I tried everything I could think of (dns flush, ip config release/renew,...
Ping spikes to 300+ occasionally in Network & Sharing
Hi, I am on a laptop and when I leave my laptop on for an extended period of time, the ping suddenly spikes to 300+ when I'm playing games and whatnot. Internet is completely unusable when it reaches that problem. I'm pretty sure that my laptop is the problem because whenever that happens, I just...
Solved ping command in General Support
in which folder can i find ping command
Cannot ping gateway in Network & Sharing
Sometimes happens that I cant ping gateway (same address as router(dhcp server)) but I get address from it. Then only restart helps. Shutdown doesn't help. I tried ipconfig /release -> ipconfig /renew after that I get IP from 10.0.0.1 but I cannot ping it back. OS: Windows 8
Disabling Palmcheck on Windows 8 in Drivers & Hardware
16244 I just got a new laptop earlier today, and when I went to play a game, I discovered palmcheck. I've been looking for hours, and none of the solutions I've found have worked. I took a screenshot of my mouse settings window so you can see what I'm dealing with. I'm using a samsung notebook...
hey guys..before the upgrade i had 17 ping in battlefield 3. now after upgrade its over 1200 how can i fix it?
Eight Forums Android App Eight Forums IOS App Follow us on Facebook