sirplease / iptables Goto Github PK
View Code? Open in Web Editor NEWThis is where I push my silly IPTables! Wooh
This is where I push my silly IPTables! Wooh
Hi,
I have been using this Iptables file for my game server (L4D) but some attacks still pass through. Recently I have captured it using tcpdump and tried to analyze it in Wireshark. The packet length is usually 50 Bytes with an error spamming in the game server console "Invalid split packet length 8". The traffic per second is 265 kbps and ~15000 packets/ 30 seconds. I have 5 pcap files that showed legit players usually only send up to ~5000 packets/30 seconds while DDOS attacks use so much more (in my case 15000 is the minimum). I wonder if we should add rules that use hit count such as this? Or if there is already a reason why we don't already have that rule?
iptables -I INPUT -p udp --dport $UDP_PORTS_PROTECTION -m state --state NEW -m recent --set
iptables -I INPUT -p udp --dport $UDP_PORTS_PROTECTION -m state --state NEW -m recent --update --seconds 30 --hitcount 8000 -j DROP
I'm still new to Iptables and not sure how I would integrate this into your existing bash script. I tried to append it to your "UDPfilter" chain but I got this error below instead:
iptables v1.8.7 (nf_tables): RULE_APPEND failed (Invalid argument): rule in chain UDPfilter
Please help, thanks!
Fixed. Port issue :)
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.