禁止响应ping
sudo iptables -A INPUT -p icmp --icmp-type 8 -s 0/0 -j DROP允许响应ping
sudo iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
sudo iptables -A OUTPUT -p icmp --icmp-type echo-reply -j ACCEPT存储设置
sudo service iptables save