Best way to filter "Nachi pings"?

Brett Glass brett at lariat.org
Sun Oct 26 23:31:51 PST 2003

Previous message: IPSec VPNs: to gif or not to gif
Next message: Best way to filter "Nachi pings"?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

We're being ping-flooded by the Nachi worm, which probes subnets for
systems to attack by sending 92-byte ping packets. Unfortunately,
IPFW doesn't seem to have the ability to filter packets by length.
Assuming that I stick with IPFW, what's the best way to stem the
tide?

--Brett Glass

Previous message: IPSec VPNs: to gif or not to gif
Next message: Best way to filter "Nachi pings"?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the freebsd-security mailing list