mirror of
https://gitlab.com/shorewall/code.git
synced 2024-12-22 14:20:40 +01:00
Add additional note about ping floods
git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2059 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
This commit is contained in:
parent
15b7ca161c
commit
8de478584e
@ -339,6 +339,17 @@ AllowPing <emphasis><source zone></emphasis> <emphasis><des
|
||||
between the zone containing the system you are pinging from and the
|
||||
zone containing 10.1.1.2, the ping requests will be dropped.</para>
|
||||
</listitem>
|
||||
|
||||
<listitem>
|
||||
<para>Ping requests are subject to logging under your policies. So
|
||||
ping floods can cause an equally big flood of log messages. To
|
||||
eliminate these, as the last rule in your /etc/shorewall/rules file
|
||||
add:</para>
|
||||
|
||||
<programlisting>#ACTION SOURCE DEST PROTO DEST
|
||||
# PORT(S)
|
||||
DropPing net all</programlisting>
|
||||
</listitem>
|
||||
</itemizedlist>
|
||||
</section>
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user