My comerades run a web-hosting service....seen here <br />
anyways they have been having quite a bit of difficulty from a individual, or possibly a group (im unsure i still have yet to examine the logs) with dos. I know how to deal with syn/ syn/ack based attacks, and other than that ddos is simple enough to deal with, but supposing their using the least likely (icmp ip rebroadcast dos) i was wondering how to deal with an attack like that.
I plan to set a strict set of rules at the router, and i may only allw icmp from trusted networks... only if it comes to that.
thanks for your help.