ping attack

can any help/explain me to protect my ubuntu machine against
D.O.S ping attacks such as this

ping ip -t -l 65500 ?

Admiral beotch

You can't really protect yourself from this kind of DoS attack if it's coming from the local network. Even if it's coming from the internet to your DSL connected firewall
, there's not much you can do. The problem is that, while you can certainly filter the packets when they get to you, the packets are still there soaking up the bandwidth between your ISP and firewall.

At best, you can simply drop the packets and "halve" the traffic because your host will not be responding.

If someone is DoSing you, you can report it to your ISP (or the owner of the source netblock) and hopefully they can apply the drop further upstream to protect you.


The cog

I think that using a firewall like gufw or guarddog you can block incoming ping requests. You cartainly can if you configure iptables directly (gufw and guarddog are GUI front-ends for driving iptables which is a command-line firewall configurer).

But ignoring pings won't prevent a DDOS from flooding your link with ping requests. You would need help from your ISP if that ever happened. All ignoring the pings would do is to avoid flooding your upload bandwidth with replies.


bodhi zazen

DOS are easy to handle with iptables.

For ping :

Code: sudo iptables -A INPUT -p icmp -m limit --limit 1/sec -j ACCEPT