How to block fragmented UDP packets
Thanks google i read that using u32 module i can stop fragmented udp
packets. I have router with nat and conntrack and I cannot manage
bandwidth of these packets so I decided to cut them.
I found the rule:
iptables -m u32 --u32 "3&0x20=0x20"
or
|iptables -m u32 --u32 "3&0x20>>5=1"
or
||"4&0x3FFF=1:0x3FFF"
but none works.
I have to add that these packets cannot be clasified using HTB rules
and filters.
.
Relevant Pages
- Many Output Drops in a serial line
... configure it to have 70% of bandwidth for this traffics. ... I suppose the Citrix traffics will have at least 70% of bandwidth. ... Router#show policy-map interface s0/1 ... 67471882 packets, 10015898781 bytes ...
(comp.dcom.sys.cisco) - Re: How to start Ethereal capture at network usage threshold?
... To monitor bandwidth you must capture ALL packets on the network. ... If you want to monitor between certain times you may need to use Windows Task ...
(microsoft.public.windows.server.networking) - Re: Confused About Net Neutrality
... Don't websites pay based on the amount of bandwidth they need ... transmitting those packets both way through their ... BordersBooks look like a more responsive site) because BordersBooks ...
(comp.dcom.telecom) - Re: How do I slow down my network?
... > I'm working with a Java client/server app. ... so bandwidth is virtually unlimited. ... > individual packets, so I can't figure out where to insert the delay. ... There is a freeware app on Linux called "nistnet". ...
(comp.lang.java.programmer) - Re: Calculating bandwidth Requirements
... know that for UDP packets it's generally around 48 bytes per packet. ... The best way to measure actual bandwidth is to sniff your network using tools ... Divide this by the bitrate of your ... > This would guarantee at least 256k (4 audio connections) for your audio ...
(microsoft.public.windowsmedia.server) |
|
