Hello everybody
I tried to install some rules iptables to protect my network.
I created 2 rules :
Where $1 is my VMID.
I tried to flood upd & synflood an other Virtual server on an other host with succes
so i presume it's not working and iptables show me 0DROP.
Any idea ?
Regards
I tried to install some rules iptables to protect my network.
I created 2 rules :
- The first to limit the flood udp
- The second to limit synflood
Code:
iptables -A FORWARD -p udp -m physdev --physdev-in tap"$1"i0d0 --physdev-out eth0 -m state --state NEW -j ACCEPT
iptables -A FORWARD -p udp -m physdev --physdev-in tap"$1"i0d0 --physdev-out eth0 -m limit --limit 10/s --limit-burst 5 -j ACCEPT
iptables -A FORWARD -p udp -m physdev --physdev-in tap"$1"i0d0 --physdev-out eth0 -j DROP
Code:
iptables -N syn_flood
iptables -A FORWARD -p tcp -m physdev --physdev-in tap"$1"i0d0 --physdev-out eth0 --syn -j syn_flood
iptables -A syn_flood -m physdev --physdev-in tap"$1"i0d0 --physdev-out eth0 -m limit --limit 2/s --limit-burst 5 -j RETURN
iptables -A syn_flood -j DROPWhere $1 is my VMID.
I tried to flood upd & synflood an other Virtual server on an other host with succes
so i presume it's not working and iptables show me 0DROP.Any idea ?
Regards