[PLUG] DoS protection

Jeff Bailey on 14 Mar 2011 10:40:56 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] DoS protection

From: Jeff Bailey <skydiver38@verizon.net>
To: plug@lists.phillylinux.org
Subject: [PLUG] DoS protection
Date: Mon, 14 Mar 2011 12:40:41 -0500 (CDT)
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: plug-bounces@lists.phillylinux.org

Hey all...

I'm curious as to whether anyone has any input on methods of Denial of Service attack protection, specifically for an exposed DNS server.

I've been looking at snort and bro, but was wondering what anyone's input would be...  Are there any other options?

Is this something that can (or "should") be handled more simply by iptables?  One of my potential issues with snort is that it looks like there might be a lot of tuning involved - these will be deployed at customer sites, and I'm not confident that we''ll have the ability to do that tuning for them, nor that they'll have the desire/ability to do it themselves.  I'm hoping to find something that's a little more "plug and play", if such a thing exists.

Thanks for any input....

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] DoS protection
  - From: Randall A Sindlinger <rsindlin+plug@seas.upenn.edu>
- Re: [PLUG] DoS protection
  - From: Carl Johnson <cjohnson19791979@gmail.com>
- Re: [PLUG] DoS protection
  - From: "Gavin W. Burris" <bug@sas.upenn.edu>

Prev by Date: Re: [PLUG] open source webmail reviews?
Next by Date: Re: [PLUG] DoS protection
Previous by thread: Re: [PLUG] open source webmail reviews?
Next by thread: Re: [PLUG] DoS protection
Index(es):
- Date
- Thread