FireBall
asked on
ACK Attack
We are getting spoofed ack flood on our linux hosting server.
Is there any possible way to clean the traffic on ip tables or is there any software that is drops the ACK packets that comes without SYN
Is there any possible way to clean the traffic on ip tables or is there any software that is drops the ACK packets that comes without SYN
ASKER
Thanks for your reply
There is a cent os server which is on bridge mode infront of this server . We are using it as a firewall
Is there any rule that we can apply on it ?
There is a cent os server which is on bridge mode infront of this server . We are using it as a firewall
Is there any rule that we can apply on it ?
ASKER
on our topology it does not stopped the attackk
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes i have opened an other question about that yesterday i find out and let it work for one day we have tested multiple time but today it has been stopped strangely :)
iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP