RE: anti-dos - Rob Sterenborg

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Rob Sterenborg" <rob@sterenborg.info>
To: netfilter@lists.netfilter.org
Subject: RE: anti-dos
Date: Wed, 28 Jan 2004 12:14:50 +0100	[thread overview]
Message-ID: <20040128111453.485DA7EAE@sterenborg.info> (raw)
In-Reply-To: <20040128104243.49272.qmail@web13208.mail.yahoo.com>

> Will you help on this i have installed Iptables
> firewall on my mail server with two eth cards eth0
> for internet and eth1 for lan 
> how can i protect from the attacks on 1st feb 
> please help me can i use same rules  if yes 
> $IFACE_INET --????
> $IFACE_DMZ ---???
> can u tell me about this 

The attacks come from MS workstations that are infected by the virus, not
from servers - if all is well.
Assuming for the virus to succesfully start the attack, it has to have
direct access (like NAT) to the internet (thus assuming that these viruses
are not able to find out IE's proxy settings and use it..)

So, do you use a proxy server or NAT for your clients to access the internet
?

If my assumption above is true (I think it is, please correct me if I'm
wrong) and your clients can only use the proxy server then you don't need
any rules as the virus can't reach the internet directly anyway. The attack
will then stop at your default gateway.

Gr,
Rob

next prev parent reply	other threads:[~2004-01-28 11:14 UTC|newest]

Thread overview: 9+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2004-01-28  7:18 anti-dos Fritz Mesedilla
2004-01-28  8:14 ` anti-dos Ray Leach
2004-01-28 10:08   ` anti-dos Axel Heinrici
2004-01-28 10:35     ` anti-dos Ray Leach
2004-01-28 10:42       ` anti-dos Nilesh
2004-01-28 11:14         ` Rob Sterenborg [this message]
  -- strict thread matches above, loose matches on Subject: below --
2004-01-29  3:30 anti-dos Fritz Mesedilla
2004-01-29  3:34 anti-dos Fritz Mesedilla
2004-01-29  5:55 ` anti-dos Ray Leach

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20040128111453.485DA7EAE@sterenborg.info \
    --to=rob@sterenborg.info \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.