Ubuntu 16.04 is installed on the server. The provider has disabled the server due to ICMP protocol overload. How can I limit incoming traffic to the server?
3 answers
How can I limit incoming traffic to the server?
no way. how many packets are sent, so much the server will receive.
aleksandr barakin aleksandr barakin
56.9k 13 49 172
|
Change the hoster to anyone that provides basic filters for DDoS attacks on the capacity of its network infrastructure. There are now plenty of them - REG.RU, Hetzner, OVH and many others.
Next, write your own rules for IPTABLES, having an idea about the legitimate traffic to your server.
Rootware rootware
816 3 18
- Next, write your own rules for IPTABLES - and fewer packets will come? - aleksandr barakin
- Well, if we are right in the task and not processed by the provider to cut, what not to write the rules IPTABLES for the filter and not to configure a transparent proxy as an intermediate host for the necessary machine. The question was about the restriction of traffic. Nobody said exactly who should filter it. - Rootware
- Nobody said who exactly should filter it is logical. then, I think, it is necessary to add the third point about killers for spammers. In my opinion, this is the most radical solution to limit incoming traffic. - aleksandr barakin
- What question is the answer. What the author meant by "provider" and "server" is unknown. Pro killer spammers - super. - Rootware
|
echo "1" | sudo tee /proc/sys/net/ipv4/icmp_echo_ignore_all 
Andrey Andrey
2,527 one 3 24
|