IP Flood Detector description IP Flood Detector is a derivative of an earlier project, DNS Flood Detector.
IP Flood Detector is a derivative of an earlier project, DNS Flood Detector. It provides managers with an audit trail of TCP, UDP, and ICMP packet floods directed at Internet-facing servers. When packet rates exceed a specified threshold, IP Flood Detector will syslog the offending IP address, along with the associated protocol and traffic volume. Flooding is a simple routing algorithm in which every incoming packet is sent through every outgoing link. Flooding can be costly in terms of wasted bandwidth and, as in the case of a Ping flood or a Denial of service attack, it can be harmful to the reliability of a computer network. Tatulescu Andrei wrote: > Salut, > > Am nevoie de o aplicatie pentru linux cu care sa fac detectia > flood-ului primit pe conexiunile externe ale mele. In acest moment > utilizez port mirroring si un linux cu un script, dar este mai > anevoios. As dori o aplicatie care sa ruleze ca daemon sau altcumva si > sa ma atentioneze prin e-mail cand numarul de pachete (icmp sau udp > sau tcp) primit de un anumit ip trece peste un anumit nivel > predefinit. > Astept un raspuns de la careva dintre voi care ma puteti ajuta. > > Cu respect, > Andrei Tatulescu > > > > > _______________________________________________ > RLUG mailing list > [email protected] > http://lists.lug.ro/mailman/listinfo/rlug > > -- > English Version: > > This message has been scanned for viruses and > dangerous content by MailScanner, and is > believed to be clean. > > Versiunea Romana: > > Mesajul a fost scanat de MailScanner si este > considerat a fi neinfectat. > > -- English Version: This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Versiunea Romana: Mesajul a fost scanat de MailScanner si este considerat a fi neinfectat. _______________________________________________ RLUG mailing list [email protected] http://lists.lug.ro/mailman/listinfo/rlug
