Link to home
Start Free TrialLog in
Avatar of FireBall
FireBall

asked on

ACK Attack

We are getting spoofed ack flood on our linux hosting server.
Is there any possible way to clean the traffic on ip tables or is there any software that is drops the ACK packets that comes without SYN
Avatar of SStory
SStory
Flag of United States of America image

#drop new connections that don't start with SYN
iptables -A INPUT -p tcp ! --syn -m state --state NEW -j DROP
Avatar of FireBall
FireBall

ASKER

Thanks for your reply

There is a cent os server which is on bridge mode infront of this server . We are using it as a firewall
Is there any rule that we can apply on it ?
on our topology it does not stopped the attackk
ASKER CERTIFIED SOLUTION
Avatar of SStory
SStory
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Yes i have opened an other question about that yesterday i find out and let it work for one day we have tested multiple time but today it has been stopped strangely :)