public
/
dhcp_protect
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 2 Wiki Actividad
A userspace application that filters DHCP floods to protect a DHCP server. It uses the Netfilter userspace packet queuing API.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30 Commits
1 Rama
Árbol: 64cb08090a
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '64cb08090a'
${ noResults }
dhcp_protect/dhcp_protect.conf

dhcp_protect.conf 711B
Original Blame Histórico

12345678910111213141516171819202122232425262728 
  1. # max_pkt_per_interval

  2. # maximum number of packets authorised per time interval.

  3. max_pkt_per_interval=30

  4. 

  5. # interval

  6. # measurement time interval in seconds.

  7. interval=30

  8. 

  9. # debug

  10. # enable debugging, warning, very verbose

  11. debug=0

  12. 

  13. # blacklist_time

  14. # number of seconds this client will be ignored once

  15. # it exceeded the max_pkt_per_interval per interval

  16. blacklist_time=55

  17. 

  18. # queue number

  19. # refers to the queue-num of iptables.

  20. # -A FORWARD -p udp -m udp --dport 67 -j NFQUEUE --queue-num 67 --queue-bypass

  21. queue=67

  22. 

  23. # dryrun

  24. # if dryrun is set to 1 it will accept all packets no matter what.

  25. # this can be used for testing, syslog will still display the blacklisting

  26. # actions.

  27. # Set to 0 for production.

  28. dryrun=0