Possible UDP-flood?

Learn about Computer Security Leak Testing/Attacks/Vulnerability Research
21

I confirm these “intrusions” appear when I’m on MSN.

http://img329.imageshack.us/img329/8940/icmplv3.th.jpg

Ok, Ty for your answer Ronny :slight_smile:

ICMP 3.1 and 3.3 are the more common error conditions that get reported, [b]and blocking those can make surfing slow down to a crawl while fetches go thru a packet timeout[/b]. I've found it to usually be better to make Global Rules to accept ICMP 3.1 and 3.3 so the applications get the "sorry, no one home right now" instead of waiting.
Hmm... I use the default rules of stealh my ports to everyone wich block ICMP 3.1 and 3.3 [URL=http://img181.imageshack.us/my.php?image=rulesnj4.jpg] http://img181.imageshack.us/img181/8370/rulesnj4.th.jpg [/URL]
22

I agree with Grue,
it’s better not to firewall the those for performance sake, the application will stop on receiving the first packet instead of resending it over and over.

my rules permit incoming

Fragmentation Needed
Net Unreachable
Host Unreachable
Port Unreachable
Time Exceeded

23

Ty Ronny I’ll test these rules :slight_smile:

Ragwing, Did you resolved your problem ? ???

24

I don’t know why I got thousands of blocked entries, but I haven’t had anything strange since that time, so I guess you could say it’s resolved.

Cheers,
Ragwing

25

It was probably Ganda after you after all.