Re: DOS attack--Prob with iptables.pls reply urgent!!!!!

To: Pablo <paa-listas@argentina.com>
Cc: debian-firewall@lists.debian.org
Subject: Re: DOS attack--Prob with iptables.pls reply urgent!!!!!
From: "Daniel Givens" <daniel@rugmonster.org>
Date: Thu, 23 Mar 2006 14:13:15 -0600
Message-id: <[🔎] 98a18b470603231213g4695a69cq66858b76c729859e@mail.gmail.com>
Reply-to: daniel@rugmonster.org
In-reply-to: <[🔎] 20060323200804.D16BE1037F0@atenea.express.com.ar>
References: <[🔎] 98a18b470603230520q3a6a3217ucf371d4126b6258f@mail.gmail.com> <[🔎] 20060323200804.D16BE1037F0@atenea.express.com.ar>

On 3/23/06, Pablo <paa-listas@argentina.com> wrote:
> Can this work:
>
>         iptables -A INPUT -p icmp -m limit --limit 3/hr -j DROP ; droping
> only 3 pings per hour?

You first set the limit of how many you want to accept, then once that
limit is passed, it goes to the next rule, which is to drop it.  The
original message asked how to limit the pings to only three allowed
and then the rest blocked.  You're rule blocks the first three and
provided you have the policy set to allow, allow the rest.

~Daniel

Reply to:

Follow-Ups:
- Re: DOS attack--Prob with iptables.pls reply urgent!!!!!
  - From: Aro Sadoyan <aro@eif.am>

References:
- DOS attack--Prob with iptables.pls reply urgent!!!!!
  - From: "Daniel Givens" <daniel@rugmonster.org>
- RE: DOS attack--Prob with iptables.pls reply urgent!!!!!
  - From: "Pablo" <paa-listas@argentina.com>

Prev by Date: RE: DOS attack--Prob with iptables.pls reply urgent!!!!!
Next by Date: Re: DOS attack--Prob with iptables.pls reply urgent!!!!!
Previous by thread: RE: DOS attack--Prob with iptables.pls reply urgent!!!!!
Next by thread: Re: DOS attack--Prob with iptables.pls reply urgent!!!!!
Index(es):
- Date
- Thread