Date: Fri, 22 Nov 1996 01:27:46 -0500 (EST) From: Jim Riffle <jriffle@ns.kconline.com> To: Veggy Vinny <richardc@CSUA.Berkeley.EDU> Cc: isp@FreeBSD.ORG Subject: Re: ICMP Ping Flood tracing Message-ID: <Pine.BSI.3.95.961122012316.742A-100000@ns.kconline.com> In-Reply-To: <Pine.PTX.3.95.961121202217.6675D-100000@soda.CSUA.Berkeley.EDU>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 21 Nov 1996, Veggy Vinny wrote: > Greetings everyone, > > Is there anyway to trace ICMP Ping Floods to see where the source > machine is that is flooding your machine? Thanks. Yes, there is. I don't know how to tell after the fact, but during it, you can tell when it is coming from. You will want to add "pseudo-device bpfilter 4" into your kernel configuration file, then config, compile, and reboot. After you have that running in your kernel, you can use the tcpdump program to show what is going over your network. Or better yet, you can get trafshow from the ports tree and run that. Jim
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.95.961122012316.742A-100000>