> > This leads to a bug I've literally been afraid to test: > > How about forging a ping packet with source and destination > address YOUR.NET.HERE.255? Should cause a brief but interesting > storm, while doing only minimal loading on the forger. when you send out a ping it is a ICMP_ECHO packet. When the remote sends a reply it is a ICMP_ECHOREPLY packet. A host will not reply to an ICMP_ECHOREPLY so you're safe. Tim N.