Re: ICMP, SYN, ACK flooding

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Antony Stone <Antony@Soft-Solutions.co.uk>
To: netfilter@lists.netfilter.org
Subject: Re: ICMP, SYN, ACK flooding
Date: Fri, 5 Dec 2003 22:29:16 +0000	[thread overview]
Message-ID: <200312052229.16622.Antony@Soft-Solutions.co.uk> (raw)
In-Reply-To: <200312052221.01576.Antony@Soft-Solutions.co.uk>

On Friday 05 December 2003 10:21 pm, Antony Stone wrote:

> On Friday 05 December 2003 10:11 pm, Robert Gil wrote:
> > In this script for iptables i cant seem to get the icmp flood protection
> > to work. Im limiting the icmp to 1/s and a burst of 4... (under ping of
> > death), same goes for syn flood allthough im not quite sure how to test
> > syn/ack/fin/xmas flooding. And how can i go about closing all ports to
> > syn packets except the ones listed so i dont have the responding.
> > Perhaps i have some things in the wrong order. Any help would be great.
>
> What is the machine which this script is running on supposed to do?
>
> You have a strange mixture of mostly INPUT rules, with just a single
> FORWARD rule, so I wonder whether you are trying to use netfilter to
> protect the machine itself, or whether it is a Firewall protecting other
> machines on a network?

Sorry, that was inaccurate - you have more than one FORWARD rule, but it's 
still a strange mixture all the same....

Antony

-- 
In science, one tries to tell people
in such a way as to be understood by everyone
something that no-one ever knew before.

In poetry, it is the exact opposite.

 - Paul Dirac

                                                     Please reply to the list;
                                                           please don't CC me.

next prev parent reply	other threads:[~2003-12-05 22:29 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2003-12-05 22:11 ICMP, SYN, ACK flooding Robert Gil
2003-12-05 22:21 ` Antony Stone
2003-12-05 22:29   ` Antony Stone [this message]
2003-12-05 22:33 ` Jeffrey Laramie

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=200312052229.16622.Antony@Soft-Solutions.co.uk \
    --to=antony@soft-solutions.co.uk \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.