Date: Wed, 14 May 2003 14:45:40 +0300 From: "PsYxAkIaS (FreeBSD)" <freebsd@psyxakias.com> To: <freebsd-isp@freebsd.org> Subject: Network Statistics Message-ID: <003001c31a0e$59b1ba70$162ea8c0@computer>
next in thread | raw e-mail | index | archive | help
Hey all I am currently using tcpstat to check if I am getting attacked, tcpdump to trace the ips and what type of attack and ipfw firewall to block them. Sometimes trafshow too but on big attacks trafshow isnt helpful. 1. Do you have any other utils than tcpdump to suggest ? 2. I was thinking to make a script to auto-block (via ipfw firewall) any ip that spends 300 kb/sec for more than 1 minute. Do you know any tools that may show me which of my ips are getting more than 300 kb/sec? I hope you got my point Best Regards
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003001c31a0e$59b1ba70$162ea8c0>