Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!


Shells Virtual Desktop
BMail.ag - Secure Email Service
Server.net
CPLicense.net
VPS Server
Buy VPN
Vultr
VMs for AI
HostDare
HostDare
ReliableSite White-Label Dedicated Hosting for Resellers
25% Recurring Discount on NVMe VPS
InterServer VPS
BMail.ag - Secure Email Service
Best VPN
High-Performance Bare Metal Server Solutions
Karvl.com
Server Mania Cloud Hosting
DataWagon Hosting
AlphaVPS Hosting
Evoxt.com
Clouvider
VPS Hosting with NVMe
Residential IPs in the US & 4G Mobile Proxies in EU & US with Unlimited Bandwidth
ReliableSite White-Label Dedicated Hosting for Resellers
Rabisu - Hosting Solutions
Shells Virtual Desktop
New on LowEndTalk? Please Register and read our Community Rules.

All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.

UDP broadcast spamming on VPS

pechspilzpechspilz Member
edited February 2014 in Help

So there's this guy on the same node as I and two days ago he started broadcast-spamming UDP packets to port 1900 like a madman to all VPS' on the same node and the provider tells me that this is completely normal.

image

Shouldn't there be some sort of isolation on layer 4 and upwards?
What do you think?

Comments

  • Just iptables the traffic out

  • Filter it out or perhaps contact the provider with the offending IP's?

  • MaouniqueMaounique Host Rep, Veteran

    Hum, while that is normal, in general, at that level of traffic is not, he might have some misconfiguration.

  • mey be you can use this at sysctl.conf

    net.ipv4.icmp_echo_ignore_broadcasts = 1

  • pechspilzpechspilz Member
    edited February 2014

    Thanks but judging from the name it only works for ICMP, not UDP.

    I was unable to filter the traffic from the SNMP counters, not even with a PREROUTING rule in the raw table, which is one of the first tables being processed by Netfilter AFAIK.

    (one minute later)... I just checked the SNMP graphs and the problem has been resolved either by the user or the provider. Thanks for your inputs, guys!

  • AnthonySmithAnthonySmith Member, Host Rep

    Broadcast traffic is normal, that level of broadcast traffic is bat shit insane, your provider need to act not you. just lol.

Sign In or Register to comment.