[Gllug] [OT] Netgear DG834 and DOS attacks
Chris Bell
chrisbell at overview.demon.co.uk
Wed Jul 20 10:45:02 UTC 2005
On Wed 20 Jul, Wiehe, Simon wrote:
>
> Does anyone use a Netgear DG834 ?
>
> I am being bombarded with DOS attacks from one machine based in Russia. Port Scans, lo
> ads of probes etc. Is there any way to block incoming access from a particular server/
> domain/ip address at the router level?
>
> Thanks
>
> Simon
I decided to try to learn more about firewalling by going rather OTT. I
have an old 486 IPCop box sandwiched between two other old boxes, both
acting as invisible bridge + iptables firewall. Both bridges are running a
basic Debian Sarge installation with added bridge-utils, and will drop (not
reject) anything they do not wish to forward or accept, with a few port-scan
rules, etc, from iptables examples. They are not visible from outside, so
rather difficult to break. I have made provisions for very selective access
to the outer box for admin only as it is otherwise firewalled out.
--
Chris Bell
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list