From owner-freebsd-stable Thu Jan 27 9:45:55 2000 Delivered-To: freebsd-stable@freebsd.org Received: from gndrsh.dnsmgr.net (GndRsh.dnsmgr.net [198.145.92.4]) by hub.freebsd.org (Postfix) with ESMTP id AF606157B9 for ; Thu, 27 Jan 2000 09:45:52 -0800 (PST) (envelope-from freebsd@gndrsh.dnsmgr.net) Received: (from freebsd@localhost) by gndrsh.dnsmgr.net (8.9.3/8.9.3) id JAA77414; Thu, 27 Jan 2000 09:45:27 -0800 (PST) (envelope-from freebsd) From: "Rodney W. Grimes" Message-Id: <200001271745.JAA77414@gndrsh.dnsmgr.net> Subject: Re: icmp-response bandwidth limit 103/100 pps In-Reply-To: <20000127145504.A444@noc.fr.clara.net> from Sameh Ghane at "Jan 27, 2000 02:55:05 pm" To: sameh@fr.clara.net (Sameh Ghane) Date: Thu, 27 Jan 2000 09:45:27 -0800 (PST) Cc: scrappy@hub.org (The Hermit Hacker), freebsd-stable@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL54 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG [Charset iso-8859-1 unsupported, filtering to ASCII...] > Le Thu, Jan 27, 2000 at 09:40:10AM -0400, The Hermit Hacker _crivit: > > > > I just want to confirm ... this means I'm being ping-flooded, or? > > Ping-flooded, or port-scanned, or too many connections to a port > with no daemon listening... > > > its a > > near-continuous stream and makes it difficult to do anything on the > > console :( Is there a way of getting rid of it? > > remove the line: > options ICMP_BANDLIM Do not remove that option, if you are infact being hit by stream.c or any of the other later attacks removing this will make it a far worse DOS. > in your kernel config file, or tell syslog not to print kernel > messages to the console. Or better yet get ipfw/ipfilter setup and find and filter what is causing the problem. > > icmp-response bandwidth limit 103/100 pps > > icmp-response bandwidth limit 102/100 pps > > icmp-response bandwidth limit 103/100 pps > > icmp-response bandwidth limit 102/100 pps > ... > -- Rod Grimes - KD7CAX @ CN85sl - (RWG25) rgrimes@gndrsh.dnsmgr.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message