Random Network Filtering Tricks

Click here to start the Slideshow




Created on Saturday 13 July 2002 by Fabrice MARIE

Table of Contents
  1. Random Network Filtering Tricks
  2. Introduction
  3. No Dangerous Source Spoofing
  4. No ICMP tricks
  5. Mitigate SYN Floods Locally/Avoid blind connections
  6. Stop remote guessing of machine's uptime/OS fingerprint
  7. Don't get tricked with redirects
  8. Log Martians
  9. Stop Traceroutes (2)
  10. Stop Systematic Portscans
  11. Stop Simple Denials Of Service
  12. Remove These Nasty IPv4 Options
  13. Get Rid Of Bad Packets
  14. Limit The Time At Which Ressources Are Available
  15. Put A Size Quota
  16. Keeping The Bad Guys Out
  17. Drop Silently Traffic That You Expect To Refuse
  18. Anti-trick: The 'string' Match
  19. Randomize It !
  20. Simulate Network Failure
  21. Patch-O-Matic
  22. Patches That You Should Apply
  23. Netfilter Vs. ipfilter
  24. Netfilter Future
  25. Last words...
  26. Links
  27. Thanks