W dniu 20.08.2012 18:27, Jason Hellenthal pisze:
All of the methods listed in more recent messages are just fine of
methods to *somewhat* handle the DDoS on the hosts being attacked.
- *But* -
The only way you are going to take care of this is going to you're
provider at the next level and aski
W dniu 19.01.2012 17:32, Adam PAPAI pisze:
Bartek W. aka Mastier wrote:
Indeed. The default maximum is 10 000 states as I remember.
I.e. one of the main routers in my case. core quad.
set limit { states 30, frags 1, src-nodes 10 }
I had the states up to 25 but the frags
W dniu 19.01.2012 16:39, Adam PAPAI pisze:
Dear List,
I feel my freebsd box is reaching his limits.
I'm doing load-balance with a pf (round-robin + NAT) in front of 3 web
and 3 database servers. Everything works fine with 100-120MBit/s, but
if it reaches over 150MBit/s to 200MBit/s or even 30
W dniu 23.08.2011 11:48, Sara Khanchi pisze:
lan(11.11.11.0/24) --|switch|-- |(.1) gw (.64)| --|switch|--
upstream(172.16.10.x/16)
nat pool address: 172.16.10.1-172.16.10.63
nat pool address is on the same network of upstream device.
May be I don't understand you well. in your first post you've
W dniu 23.08.2011 08:36, Sara Khanchi pisze:
On Tue, Aug 23, 2011 at 10:20 AM, olli hauer wrote:
On 2011-08-23 07:10, Sara Khanchi wrote:
On Sun, Aug 21, 2011 at 6:11 PM, olli hauer wrote:
On 2011-08-21 09:48, h bagade wrote:
Hi all,
I am trying to use pf nat rules with pool support on F
bsd and linux, sorry
:-) Maybe someone else will give you some tips. I would like to also
learn something from it.
On Sun, Aug 21, 2011 at 1:39 PM, Bartek W. aka Mastier
mailto:mistrzi...@gmail.com>> wrote:
W dniu 21.08.2011 09:48, h bagade pisze:
Hi all,
I am
W dniu 21.08.2011 09:48, h bagade pisze:
Hi all,
I am trying to use pf nat rules with pool support on FreeBsd 8.0, working
together with ipfw as the main firewall. According to the natting concepts i
faced in manuals and docs, nat concept is to map the source address to the
natted address when s
On 06.07.2011 18:50, Peter N. M. Hansteen wrote:
Calomel Org writes:
ALTQ using hfsc is limited to a maximum parent bandwidth of 4294Mb.
This value is 2^32 or 4,294,967,296 bits. If you set the bandwidth any
higher, altq will flip back to zero. This "bug" was found when trying
to test 10 gigab
I want to just block few classes that must be blocked. It seems like
it's partly working , but not all packets are accessible. And moreover I
cannot connect from outside.
What is wrong? My FreeBSD is 7.3-Stable
my wan interface is vlan300 and vlan352 is for an user.
The rule for blocking is:
Cod
