Date: Tue, 17 Apr 2001 15:37:49 -0400 From: "Jonathan Slivko" <js43064n@stmail.pace.edu> To: <questions@freebsd.org>, "Terry Witherspoon" <t403403@hotmail.com> Subject: Re: Avoiding denial of service. Message-ID: <200104171537.AA1657537042@stmail.pace.edu>
next in thread | raw e-mail | index | archive | help
Terry, I know this doesn't answer the question directly, but I will pass this little piece of knowledge from my own systems: I have a system that is constantly being DoS'd. But, what I do to combat those DoS' is I have 2 IP's, each from different providers, one of which is hidden which no one knows about. So, if you are DoS'ed, you can log in on the "secret" IP and then bring down the other interface and then sandbag the IP. However, as far as port 800 goes, you might try and talk to your ISP into giving you some kind of active firewalling from their network, just in case that you do get attacked. I hope this helps. -- Jonathan M. Slivko ---------- Original Message ---------------------------------- From: "Terry Witherspoon" <t403403@hotmail.com> Date: Tue, 17 Apr 2001 12:19:19 -0500 > >Hi, > >I've built several name servers running BIND 8.2.3. >I allow SSL connections to port 800 on each where I'm >running a web server. I'd like to avoid denial of >service on the name servers. There are already >DOS attacks in neighboring networks but as yet they've >not hit me. I have been portscanned a couple of times. >I've a Cisco router with an access list for port 800. >What knobs can I change to reduce impact of DOS? I do >not manage the Cisco but the network guy would implement >any acl I ask for. SHould I do something there too? These >are important servers for maybe 10,000 users. > >Thanks for any advice , TW > >_________________________________________________________________ >Get your FREE download of MSN Explorer at http://explorer.msn.com > > >To Unsubscribe: send mail to majordomo@FreeBSD.org >with "unsubscribe freebsd-questions" in the body of the message > -- ~~~~ Jonathan M. Slivko <js43064n@pace.edu> Systems Administrator, DataSyrge Internet Services Global IRC Operator, AsylumNet IRC Network ~~~~ -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200104171537.AA1657537042>