[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [OT] Broadcast flood



Jorge Armando Medina wrote:
Hello

You can use this rules in your script, you only need to change to your
broadcast address:
/sbin/iptables -t filter -A INPUT -i <Interface> -s 10.0.0.255 -j DROP
/sbin/iptables -t filter -A INPUT -i <Interface> -s 0.0.0.0 -j DROP
/sbin/iptables -t filter -A INPUT -i <Interface> -d 255.255.255.255 -j
DROP
/sbin/iptables -t filter -A INPUT -i <Interface> -d 0.0.0.0 -j DROP

For example my local network is 10.0.0.0/24 and therefore my broadcast
address is 10.0.0.255

In this wai I drop the incoming broadcast packets at the box (even dhcp requests and other useful services)... I think the windows machine need not to send broadcast at all, so I want to stop them!

Any help appreciated

Radel

**************************************************************************
Questo messaggio puo' contenere informazioni di carattere estremamente
riservato e confidenziale.
Qualora non foste i destinatari, vogliate immediatamente informarci
con lo stesso mezzo ed eliminare il messaggio, con gli eventuali allegati,
senza trattenerne copia. Qualsivoglia utilizzo non autorizzato del
contenuto di questo messaggio costituisce violazione dell'obbligo di non
prendere cognizione della corrispondenza tra altri soggetti, salvo piu'
grave illecito, ed espone il responsabile alle relative conseguenze civili
e penali.

This message is being sent from Starcom Italia Srl and may
contain information which is confidential or privileged.  If you are not
the intended recipient, please advise the sender immediately by reply
e-mail and delete this message and any attachments without retaining a
copy. Any unauthorized use of the content of this message is a breach of
your duty to respect the confidentiality of the correspondence between
other persons and can expose the responsible party to civil and/or
criminal penalties, and may constitute a more serious offense.
**************************************************************************




Reply to: