From owner-freebsd-questions Tue May 4 17:44:50 1999 Delivered-To: freebsd-questions@freebsd.org Received: from java.dpcsys.com (java.dpcsys.com [206.16.184.7]) by hub.freebsd.org (Postfix) with ESMTP id 03D08154A9 for ; Tue, 4 May 1999 17:44:38 -0700 (PDT) (envelope-from dan@dpcsys.com) Received: from localhost (dan@localhost) by java.dpcsys.com (8.9.1a/8.9.1) with SMTP id RAA20037; Tue, 4 May 1999 17:44:52 -0700 (PDT) Date: Tue, 4 May 1999 17:44:52 -0700 (PDT) From: Dan Busarow To: Doug White Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ICMP-attack In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 4 May 1999, Doug White wrote: > On Mon, 3 May 1999, Pat Lynch wrote: > > DOug, that actually won't work, the only way to make smurfs useless is to > > get enough bandwidth to handle the attack, or have your upstream filter > > for you, the only thing thios solves is DoS on the local net, but any > > communication in or out the gateway is still going to be impossible. > > Er? If you filter ICMP at your router, the pings (or whatever) can't > reach their intended target. Their intended target is your entire network. The goal of a smurfer is to generate so many echo replies that they fill your pipe. It's too late to do anything on your own router, well it will keep your LAN working but your Internet connection is just as hosed. Dan -- Dan Busarow 949 443 4172 Dana Point Communications, Inc. dan@dpcsys.com Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message