Results 1 to 3 of 3
-
05-15-2008, 07:14 AM #1WHT Addict
- Join Date
- Jun 2006
- Posts
- 118
[REQUEST] Dropping Empty UDP Packets
Hey,
I currently have my own dedicated server located with the following prefs;
Linux: CentOS 4.6 (final)
Kernel Version: 2.6.9-67.0.15.ELsmp
I know this is possible, but I am seeking how to drop empty udp packets automatically with iptables. If anyone could help me out, would be appreciated.
Cya,
TomBoy123
-
05-15-2008, 06:51 PM #2WHT Addict
- Join Date
- Jun 2006
- Posts
- 118
*Bump
Any ideas people?
-
05-16-2008, 12:59 AM #3Disabled
- Join Date
- May 2006
- Posts
- 1,426
What do you mean empty udp packets? I never seen a 0byte packet, it has to have some length to it.
If you want to block invalid or fragmented packets there are iptables rules you can use for it. Firewall scripts like APf and CSF have packet filter too for invalid packets. Also if the udp packets are going to a port where you dont have any udp service simply block that port to udp.
Here are some resources:
How to: Linux Iptables block common attacks
Got Root : Linux Firewall rules
http://www.linuxtopia.org/Linux_Firewall_iptables/
http://configserver.com/cp/csf.html
You also may wanna look into extended tcpdump syntax or understanding tcp dump in general
dmiessler.com | study | tcpdump