[Gllug] [OT] Netgear DG834 and DOS attacks
Chris Bell
chrisbell at overview.demon.co.uk
Wed Jul 20 11:30:31 UTC 2005
On Wed 20 Jul, Wiehe, Simon wrote:
>
>
> I have my network protected by my Linux box running ip tables as well
> as the firewall on the router. However, I tend to explicitly drop packets
> for any ports where I have previously had DOS attacks, even though the router
> defaults to deny. I was just wondering if I was able to reject any requests
> from a particular domain.
>
> I have configured the router to email logs info and I want to keep it as clean
> as possible so I can spot things like this. If I could block this domain by
> default it would reduce the noise.
>
> Thanks
>
> Simon
>
I do not trust my ADSL modem to do any filtering as I do not even know
what OS drives it. It was purchased second-hand, and I just use it as a
basic modem. There is no shortage of old kit, and IP Tables on a firewall
will happily block or drop a complete address range. I get plenty of
feedback from my IPCop box.
--
Chris Bell
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list