[colug-432] Diagnosing and blocking DDOS attacks

R P Herrold herrold at owlriver.com
Mon Jul 18 09:22:22 EDT 2011

On Sun, 17 Jul 2011, DEEDSD at nationwide.com wrote:

> Is there a way to tell if it is an icmp flood, or what?

tcpdump permits viewing the packet headers, and may be limited 
to look only at content from specified netblocks

-- Russ herrold

More information about the colug-432 mailing list