• iptables configs
    9 replies, posted
Does anyone have a combined list of all the iptables rules for mitigating srcds dos attacks?
Here's a decent place to get started: [url]https://forums.alliedmods.net/showthread.php?t=151551[/url]
Scrap that, I think vmware does something funny to ethernet frames. probably should have gotten a baseline to compare with.
easier to disable iptables
As a follow-up, here's what my rules look like now. [code] pkts bytes target prot opt in out source destination 26 1040 DROP all -- any any anywhere anywhere state INVALID 0 0 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 state NEW STRING match "|fffffffe|" ALGO name bm TO 40 0 0 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 length 2569:65535 7 203 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 length 0:32 3834K 781M ACCEPT udp -- any any anywhere anywhere udp dpts:26901:27255 state RELATED,ESTABLISHED [/code]
[QUOTE=Blasteh;45011506]As a follow-up, here's what my rules look like now. [code] pkts bytes target prot opt in out source destination 26 1040 DROP all -- any any anywhere anywhere state INVALID 0 0 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 state NEW STRING match "|fffffffe|" ALGO name bm TO 40 0 0 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 length 2569:65535 7 203 DROP udp -- any any anywhere anywhere udp dpts:27015:27255 length 0:32 3834K 781M ACCEPT udp -- any any anywhere anywhere udp dpts:26901:27255 state RELATED,ESTABLISHED [/code][/QUOTE] What do you use to print it out like that?
iptables -nvL
That's my FORWARD table as I run a windows box for the gmod server. so I ran "iptables -vL FORWARD"
What's the point putting rules on a box that only forwards traffic? Sure it's sort of a layer of protection, but anyone could get the actual IP of your server and render your iptable rules useless.
[QUOTE=>>oubliette<<;45016682]What's the point putting rules on a box that only forwards traffic? Sure it's sort of a layer of protection, but anyone could get the actual IP of your server and render your iptable rules useless.[/QUOTE] The windows box is isolated by NAT, there's only 1 way in.
Sorry, you need to Log In to post a reply to this thread.