Results 1 to 3 of 3
  1. #1

    [REQUEST] Dropping Empty UDP Packets

    Hey,

    I currently have my own dedicated server located with the following prefs;

    Linux: CentOS 4.6 (final)
    Kernel Version: 2.6.9-67.0.15.ELsmp

    I know this is possible, but I am seeking how to drop empty udp packets automatically with iptables. If anyone could help me out, would be appreciated.

    Cya,
    TomBoy123

  2. #2
    *Bump

    Any ideas people?

  3. #3
    Join Date
    May 2006
    Posts
    1,398
    What do you mean empty udp packets? I never seen a 0byte packet, it has to have some length to it.

    If you want to block invalid or fragmented packets there are iptables rules you can use for it. Firewall scripts like APf and CSF have packet filter too for invalid packets. Also if the udp packets are going to a port where you dont have any udp service simply block that port to udp.
    Here are some resources:
    How to: Linux Iptables block common attacks
    Got Root : Linux Firewall rules
    http://www.linuxtopia.org/Linux_Firewall_iptables/
    http://configserver.com/cp/csf.html

    You also may wanna look into extended tcpdump syntax or understanding tcp dump in general
    dmiessler.com | study | tcpdump

  4. Newsletters

    Subscribe Now & Get The WHT Quick Start Guide!

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •