RE: Blocking Virus ICMP flood
From: Don Bowman (don_at_sandvine.com)
Date: 08/25/03
- Previous message: Steve Elledge: "Out of Office Reply (was Re: Wicked screensaver)"
- Maybe in reply to: User Ernie: "Blocking Virus ICMP flood"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
To: 'User Ernie' <ernie@spooky.eis.net.au>, Don Bowman <don@sandvine.com> Date: Mon, 25 Aug 2003 09:51:05 -0400
> From: User Ernie [mailto:ernie@spooky.eis.net.au]
> [ Charset ISO-8859-1 unsupported, converting... ]
> > > From: User Ernie [mailto:ernie@spooky.eis.net.au]
> > >
> > > Does anyone know if ipfw can do someting similar to:
> > >
> > > deny icmp any any echo tos min-delay
> > >
> > > Which is the Cisco command I use to try and limit the flood
> > > style icmp traffic from the
> > > recent Internet viruses.
> > >
> > > - Ernie.
> >
> > ipfw add deny icmp from any to any icmptypes 0,8 iptos lowdelay
> >
> I tried that but it gives me the following error:
>
> ipfw: unknown or out of order argument `iptos''
>
>
> Does it depend on FreeBSD version? I am running 4.8-STABLE
I have IPFW2 option enabled, that may be required.
_______________________________________________
freebsd-isp@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"
- Previous message: Steve Elledge: "Out of Office Reply (was Re: Wicked screensaver)"
- Maybe in reply to: User Ernie: "Blocking Virus ICMP flood"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
