Skip site navigation (1)Skip section navigation (2)
Date:      Wed, 14 May 2003 14:45:40 +0300
From:      "PsYxAkIaS (FreeBSD)" <freebsd@psyxakias.com>
To:        <freebsd-isp@freebsd.org>
Subject:   Network Statistics
Message-ID:  <003001c31a0e$59b1ba70$162ea8c0@computer>

next in thread | raw e-mail | index | archive | help
Hey all

I am currently using tcpstat to check if I am getting attacked, tcpdump =
to trace the ips and what type of attack and ipfw firewall to block =
them. Sometimes trafshow too but on big attacks trafshow isnt helpful.

1. Do you have any other utils than tcpdump to suggest ?

2. I was thinking to make a script to auto-block (via ipfw firewall) any =
ip that spends 300 kb/sec for more than 1 minute. Do you know any tools =
that may show me which of my ips are getting more than 300 kb/sec? I =
hope you got my point


Best Regards



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003001c31a0e$59b1ba70$162ea8c0>