Date: 19 Jul 2005 10:28:21 -0400 From: Lowell Gilbert <freebsd-questions-local@be-well.ilk.org> To: vladone <vladone@spaingsm.com> Cc: freebsd-questions@freebsd.org Subject: Re: DoS prevention .Sysctl parameters to prevent this? Message-ID: <44ll42j2ey.fsf@be-well.ilk.org> In-Reply-To: <1188328635.20050718140416@spaingsm.com> References: <1188328635.20050718140416@spaingsm.com>
next in thread | previous in thread | raw e-mail | index | archive | help
vladone <vladone@spaingsm.com> writes: > Recently i have in gateway freebsd that go down due to an DoS attack. > I dont know exactly what is (i dont have experience), but is useful if someone, with more > wiyh more experience, can give some parameters for sysctl to prevent > Dos an flood problem. > Or perhaps with ipfw rules. > Any help will be apreciated! The question is too general. Every resource that is consumed by incoming traffic is potentially subject to a denial-of-service attack. Furthermore, most denial-of-service attacks are actually using up your incoming bandwidth, so there isn't much you can do on your machine after those packets have already traversed your incoming link. See the manual for security(7), and see if that gives you a good start. -- Lowell Gilbert, embedded/networking software engineer, Boston area http://be-well.ilk.org/~lowell/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44ll42j2ey.fsf>