Date: Tue, 01 Dec 1998 19:53:50 +0100 From: sthaug@nethelp.no To: dillon@apollo.backplane.com Cc: karl@Denninger.Net, wollman@khavrinen.lcs.mit.edu, john.saunders@scitec.com.au, freebsd-current@FreeBSD.ORG Subject: Re: RE: D.O.S. attack protection enhancements commit (ICMP_BANDLIM) Message-ID: <29019.912538430@verdi.nethelp.no> In-Reply-To: Your message of "Tue, 1 Dec 1998 09:30:09 -0800 (PST)" References: <199812011730.JAA09274@apollo.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Oh. no. 20Kpps of illegitimate ICMP traffic. It would be pretty > hard to get even 10pps of legitimate ICMP traffic. Our most heavily > loaded web server only generates 0.5 pps or so in ICMP packets and > receives maybe 1 pps in ICMP. As another example, UNINETT has a 155 Mbps IP over SDH connection to the Internet. We use rate limiting (Cisco CAR) for ICMP traffic, and currently have the limit set to 160 kbps. In practice, this is more than enough. Steinar Haug, Nethelp consulting, sthaug@nethelp.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?29019.912538430>