Date: Wed, 14 May 2003 14:45:40 +0300 From: "PsYxAkIaS (FreeBSD)" <freebsd@psyxakias.com> To: <freebsd-isp@freebsd.org> Subject: Network Statistics Message-ID: <003001c31a0e$59b1ba70$162ea8c0@computer>
next in thread | raw e-mail | index | archive | help
Hey all I am currently using tcpstat to check if I am getting attacked, tcpdump = to trace the ips and what type of attack and ipfw firewall to block = them. Sometimes trafshow too but on big attacks trafshow isnt helpful. 1. Do you have any other utils than tcpdump to suggest ? 2. I was thinking to make a script to auto-block (via ipfw firewall) any = ip that spends 300 kb/sec for more than 1 minute. Do you know any tools = that may show me which of my ips are getting more than 300 kb/sec? I = hope you got my point Best Regards
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003001c31a0e$59b1ba70$162ea8c0>