Strange kernel messages
Daniel Gerzo
danger at rulez.sk
Sat May 14 00:21:21 PDT 2005
Hello Colin,
Saturday, May 14, 2005, 9:14:20 AM, you thoughtfully wrote the following:
> Hi all!
> I occasionally get these in my daily security run output (which is
> worrying in itself)
> Limiting closed port RST response from 1629 to 200 packets per second
> the number of these can range from one or two, to sometimes 25 - 30
> although the latter case is rarer. Usually there's about six or so.
> These don't arrive every day, usually about once per week on average.
> Is this an OS response to an attempted attack, limiting potential DDOS
> damage? That's how I'm reading it, but of course I'm guessing. If that
> *is* so, what mechanism is doing this?
your kernel is limitting number of icmp ping requests to 200, someone
is possibly trying to ping -f you. You can also decrease/increase this
limit with net.inet.icmp.icmplim
> FreeBSD 4.11 STABLE
> Regards & TIA
> -Colin
--
Best Regards,
DanGer, ICQ: 261701668 | e-mail protecting at: http://www.2pu.net/
http://danger.rulez.sk | proxy list at: http://www.proxy-web.com/
| FreeBSD - The Power to Serve!
[ i locked the door to my own cell, and i lost the key ]
More information about the freebsd-questions
mailing list