LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 09-19-2005, 09:44 AM   #1
murder
LQ Newbie
 
Registered: Aug 2005
Posts: 29

Rep: Reputation: 15
Stopping UDP Packtet Flood on Port: 28960


i have got someone that keeps flooding port 28960 it doesnt really hurt anything other than it takes my gameservers offline is there a way that i can stop it?
 
Old 09-19-2005, 11:18 AM   #2
gnukish
Member
 
Registered: Apr 2005
Location: Neverland
Distribution: Slackware / Ubuntu
Posts: 171

Rep: Reputation: 30
In linux use iptables(firewall in new-linux distros). Before iptables it was ipchain.

Code:
http://www.cse.msu.edu/~minutsil/iptables.html
Quick howto for iptables.
 
Old 09-19-2005, 11:23 AM   #3
murder
LQ Newbie
 
Registered: Aug 2005
Posts: 29

Original Poster
Rep: Reputation: 15
thanks
 
Old 09-19-2005, 11:26 AM   #4
murder
LQ Newbie
 
Registered: Aug 2005
Posts: 29

Original Poster
Rep: Reputation: 15
ok yeah i dont understand any of that is there a easy way to do it?
 
Old 09-19-2005, 02:32 PM   #5
Orkie
Member
 
Registered: Mar 2005
Distribution: Breezy Badger
Posts: 248

Rep: Reputation: 30
Webmin has a very easy-to-use module for iptables. You will just need to set iptables to start as bootup (via a radio box at the bottom of the module) then set a rule for incoming packets which drops packets on port 28960 if protocol equals UDP.
 
Old 09-19-2005, 06:14 PM   #6
murder
LQ Newbie
 
Registered: Aug 2005
Posts: 29

Original Poster
Rep: Reputation: 15
but the gameserver runs on UDP port 28960?
 
Old 09-19-2005, 10:42 PM   #7
gnukish
Member
 
Registered: Apr 2005
Location: Neverland
Distribution: Slackware / Ubuntu
Posts: 171

Rep: Reputation: 30
copy and paste the below code which will drop the incoming udp packets in the respective port.

Code:
iptables -A INPUT -s <attacker IP> -p udp --dport 28960 -j DROP
now copy and paste

Code:
root@box:/sbin/iptables# service iptables save
root@box:/sbin/iptables# service iptables restart
root@box:/sbin/iptables# iptables -L
Hope you use the howto with this rules. Makes some sense , like A = append, p is the protoco, and --dport is the port no etc.

Try making your own rules and test them

Last edited by gnukish; 09-19-2005 at 10:52 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
telneting to a udp port. juanb Linux - Security 3 03-06-2013 02:30 PM
How To Stop a UDP Packet Flood ! murder Linux - Newbie 2 09-19-2005 11:14 AM
Stoping UDP Packtet Flood on Port: 28960 murder Linux - Networking 1 09-19-2005 09:43 AM
udp port 1024 frgtn Linux - Security 2 03-27-2005 08:10 AM
closing port 68/udp? antik Linux - Security 1 09-26-2003 01:26 PM


All times are GMT -5. The time now is 09:01 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration