Date: Thu, 31 May 2001 16:44:19 -0500 From: "Kyle Crane" <kcrane@cranehome.org> To: "Liran Dahan" <lirandb@netvision.net.il> Cc: <freebsd-security@freebsd.org> Subject: Re: ICMP Killed me and my machine Message-ID: <005e01c0ea1a$d8ec2da0$e20b1cac@kvcrane> References: <200105311720.AA16122206@stmail.pace.edu> <002f01c0ea20$657392e0$b88f39d5@a>
next in thread | previous in thread | raw e-mail | index | archive | help
Niether your limiting or IPFW will fix the problem with your bandwidth being eaten by the attack. The only way to cut it off is at the ISP level. Your filter will certainly block the packets at your machine (network card), but it wont stop the flood. It will only inflate your lifevest. ----- Original Message ----- From: "Liran Dahan" <lirandb@netvision.net.il> To: <freebsd-security@freebsd.org> Sent: Thursday, May 31, 2001 5:24 PM Subject: Re: ICMP Killed me and my machine > But i have my own filtering rules :) > You mean... its my ISP's fault? even my ICMP bandwidth limited and my IPFW > cant help? > > ----- Original Message ----- > From: "Jonathan Slivko" <js43064n@stmail.pace.edu> > To: <freebsd-security@FreeBSD.ORG>; "Liran Dahan" <lirandb@netvision.net.il> > Sent: Thursday, May 31, 2001 11:20 PM > Subject: Re: ICMP Killed me and my machine > > > > Time to call your ISP and get some filtering rules in place :) > > -- Jonathan > > > > ----------------------------------------- > > Jonathan M. Slivko <js43064n@pace.edu> > > Network Admin., DataSyrge Internet Svces. > > Server Co-Admin., AsylumNet IRC Networks > > > > web: http://webpage.pace.edu/js43064n/ > > voice: (212) 696-6774 (24 Hours) > > ----------------------------------------- > > > > > > > > ---------- Original Message ---------------------------------- > > From: "Liran Dahan" <lirandb@netvision.net.il> > > Date: Fri, 1 Jun 2001 00:14:45 +0200 > > > > >My machines are being attacked over hours and those are the only > > messages i found: > > >Jun 1 00:07:30 freebsd /kernel: Limiting icmp unreach response > > from 710 to 20 packets per second > > >Jun 1 00:05:49 freebsd /kernel: Limiting icmp unreach response > > from 1092 to 20 packets per second > > >i tonoz of messages like that... > > > > > >I Had Orange light ON - TRAF on my hub > > >But i was down including all my machines.. > > > > > >-Liran Dahan- (lirandb@netvision.net.il) > > > > > > > > > > > > ___________________________________________________________________ > > ___ > > Sent via the Pace University Mail system at stmail.pace.edu > > > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?005e01c0ea1a$d8ec2da0$e20b1cac>