设为首页收藏本站

LinuxSir.cn,穿越时空的Linuxsir!

 找回密码
 注册
搜索
热搜: shell linux mysql
LinuxSir.cn,穿越时空的Linuxsir!»论坛 运维技术 —— LinuxSir.cn 网络技术\网络安全讨论 那位给分析一下我的路由器现象
返回列表 发新帖
查看: 1176|回复: 9

那位给分析一下我的路由器现象

[复制链接]
发表于 2006-3-13 13:20:42 | 显示全部楼层 |阅读模式
声明:我只知道些基本概念,所以有罗嗦不到位的情况请详细说明

环境:单位的十几台电脑通过交换机--路由器---adsl猫上网,没有任何网络服务。
现象:
1、路由器有时候出现:192.168.2.XXX time out,导致该用户无法与网络连接。
2、路由器有时出现无法登录(路由器本身的配置页面,且无法连接外网)的现象。
3、对于使用BT的用户(可能还有什么ED、MSN等)出现udp flood或syn flood。
4、对于正常的用户在访问网页时也出现syn flood,导致无法访问网页。

03/13/2006  13:12:53 192.168.2.100 login success
03/13/2006  13:11:31 **SYN Flood to Host** 192.168.2.100, 35420->> 218.61.34.138, 80 (from PPPoE Outbound)
03/13/2006  13:05:41 **SYN Flood to Host** 192.168.2.100, 37693->> 66.240.11.101, 80 (from PPPoE Outbound)
03/13/2006  13:04:26 **SYN Flood to Host** 192.168.2.170, 1841->> 218.25.89.33, 80 (from PPPoE Outbound)
03/13/2006  13:01:52 PPPoE receive PADT        
03/13/2006  13:00:46 **UDP Flood Stop**  (from PPPoE Outbound)
03/13/2006  13:00:45 **UDP Flood (per Min) Stop**  (from PPPoE Outbound)
03/13/2006  13:00:08 **UDP Flood (per Min)** 192.168.2.119, 26254->> 148.160.190.245, 32459 (from PPPoE Outbound)
03/13/2006  13:00:08 **UDP flood** 192.168.2.119, 26254->> 148.160.190.245, 32459 (from PPPoE Outbound)
03/13/2006  13:00:08 **UDP flood** 192.168.2.119, 26254->> 222.158.23.245, 1076 (from PPPoE Outbound)
03/13/2006  12:59:01 192.168.2.100 login success
03/13/2006  12:48:16 **SYN Flood to Host** 192.168.2.100, 44688->> 202.108.15.131, 80 (from PPPoE Outbound)
03/13/2006  12:48:15 192.168.2.100 login success
03/13/2006  12:40:44 **UDP Flood Stop**  (from PPPoE Outbound)
03/13/2006  12:40:44 **UDP Flood (per Min) Stop**  (from PPPoE Outbound)
03/13/2006  12:40:44 **UDP Flood (per Min)** 192.168.2.110, 5144->> 61.152.116.95, 5662 (from PPPoE Outbound)
03/13/2006  12:40:44 **UDP flood** 192.168.2.110, 5144->> 61.152.116.95, 5662 (from PPPoE Outbound)
03/13/2006  12:40:07 **UDP Flood (per Min)** 192.168.2.119, 26254->> 222.90.39.31, 25467 (from PPPoE Outbound)
03/13/2006  12:40:07 **UDP flood** 192.168.2.119, 26254->> 222.90.39.31, 25467 (from PPPoE Outbound)
03/13/2006  12:40:07 **UDP Flood (per Min)** 192.168.2.119, 26254->> 82.157.235.75, 32459 (from PPPoE Outbound)
03/13/2006  12:34:58 192.168.2.100 login success
03/13/2006  12:34:04 **SYN Flood to Host** 192.168.2.100, 37843->> 202.108.15.131, 80 (from PPPoE Outbound)
03/13/2006  12:27:57 **SYN Flood to Host** 192.168.2.100, 53677->> 220.181.31.85, 80 (from PPPoE Outbound)
03/13/2006  12:25:46 PPPoE receive PADT        
03/13/2006  12:20:47 **UDP Flood Stop**  (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 59.41.69.155, 60169 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min) Stop**  (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 222.94.39.99, 1185 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 222.94.39.99, 1185 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 192.192.232.60, 14322 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 192.192.232.60, 14322 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 210.192.241.51, 32639 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 210.192.241.51, 32639 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 69.112.97.3, 32459 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 69.112.97.3, 32459 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 220.174.171.196, 17270 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 220.174.171.196, 17270 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 213.54.58.37, 62977 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 213.54.58.37, 62977 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 213.112.120.34, 32459 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 213.112.120.34, 32459 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 222.216.146.76, 18929 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 222.216.146.76, 18929 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 24.171.77.28, 40377->> 192.168.2.119, 26254 (from PPPoE Inbound)
03/13/2006  12:20:46 **UDP flood** 24.171.77.28, 40377->> 192.168.2.119, 26254 (from PPPoE Inbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 85.10.26.109, 14369 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 85.10.26.109, 14369 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 88.153.11.10, 61528 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 88.153.11.10, 61528 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP Flood (per Min)** 192.168.2.119, 26254->> 81.225.83.8, 64291 (from PPPoE Outbound)
03/13/2006  12:20:46 **UDP flood** 192.168.2.119, 26254->> 81.225.83.8, 64291 (from PPPoE Outbound)
03/13/2006  12:20:08 **UDP Flood (per Min)** 192.168.2.119, 26254->> 62.163.39.154, 49152 (from PPPoE Outbound)
03/13/2006  12:20:08 **UDP flood** 192.168.2.119, 26254->> 62.163.39.154, 49152 (from PPPoE Outbound)
03/13/2006  12:20:08 **UDP Flood (per Min)** 192.168.2.119, 26254->> 212.1.142.1, 32948 (from PPPoE Outbound)
03/13/2006  12:18:38 **SYN Flood to Host** 192.168.2.100, 46001->> 202.104.237.217, 80 (from PPPoE Outbound)
03/13/2006  12:16:50 **Smurf** 213.254.94.0, 4672->> 192.168.2.110, 5150 (from PPPoE Inbound)
03/13/2006  12:13:16 **SYN Flood Stop**  (from PPPoE Inbound)
03/13/2006  12:13:16 **SYN Flood** 219.129.215.73, 1857->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:16 **SYN Flood** 192.168.2.119, 3717->> 222.72.106.94, 13767 (from PPPoE Outbound)
03/13/2006  12:13:16 **SYN Flood** 192.168.2.110, 3782->> 221.220.195.254, 4662 (from PPPoE Outbound)
03/13/2006  12:13:16 **SYN Flood** 192.168.2.110, 3781->> 222.243.129.12, 4661 (from PPPoE Outbound)
03/13/2006  12:13:16 **SYN Flood** 192.168.2.119, 3716->> 220.255.107.218, 6881 (from PPPoE Outbound)
03/13/2006  12:13:15 **SYN Flood** 192.168.2.119, 3715->> 60.11.136.176, 24914 (from PPPoE Outbound)
03/13/2006  12:13:15 **SYN Flood** 192.168.2.110, 3780->> 218.88.38.161, 5613 (from PPPoE Outbound)
03/13/2006  12:13:15 **SYN Flood** 192.168.2.110, 3779->> 61.181.167.79, 10700 (from PPPoE Outbound)
03/13/2006  12:13:15 **SYN Flood** 192.168.2.110, 3778->> 221.221.234.13, 4164 (from PPPoE Outbound)
03/13/2006  12:13:15 **SYN Flood** 192.168.2.119, 3714->> 24.80.104.183, 61438 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.170, 1474->> 219.156.123.30, 2000 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 220.234.93.43, 4594->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.119, 3713->> 222.208.147.224, 11018 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.100, 58413->> 66.249.89.104, 80 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 218.26.170.139, 4704->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:14 **SYN Flood** 222.39.1.142, 2243->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.119, 3712->> 169.233.13.231, 54550 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.110, 3777->> 61.51.83.151, 10700 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.110, 3776->> 220.175.236.185, 5188 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.110, 3775->> 222.170.100.175, 7110 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.110, 3774->> 5.5.5.5, 8000 (from PPPoE Outbound)
03/13/2006  12:13:14 **SYN Flood** 192.168.2.119, 3711->> 60.183.86.91, 9624 (from PPPoE Outbound)
03/13/2006  12:13:13 **SYN Flood** 192.168.2.250, 1838->> 220.181.23.12, 5008 (from PPPoE Outbound)
03/13/2006  12:13:13 **SYN Flood** 192.168.2.119, 3710->> 221.198.44.176, 21999 (from PPPoE Outbound)
03/13/2006  12:13:13 **SYN Flood** 192.168.2.119, 3709->> 58.177.102.122, 18457 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.119, 3708->> 59.34.181.144, 10518 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.119, 3707->> 72.73.17.81, 8875 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.119, 3706->> 71.51.231.9, 15919 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.110, 3773->> 221.137.146.100, 9562 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.110, 3772->> 222.85.52.240, 5619 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 192.168.2.110, 3771->> 60.2.105.144, 4162 (from PPPoE Outbound)
03/13/2006  12:13:12 **SYN Flood** 218.78.232.243, 3520->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:11 **SYN Flood** 192.168.2.119, 3705->> 159.226.224.7, 16881 (from PPPoE Outbound)
03/13/2006  12:13:11 **SYN Flood** 192.168.2.170, 1473->> 219.156.123.28, 2000 (from PPPoE Outbound)
03/13/2006  12:13:11 **SYN Flood** 222.42.82.70, 1913->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:11 **SYN Flood** 192.168.2.119, 3704->> 58.67.144.207, 22619 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.110, 3770->> 61.149.140.142, 7113 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.110, 3769->> 61.48.179.190, 10700 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.110, 3768->> 221.197.158.108, 4662 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.119, 3703->> 70.122.79.118, 8176 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 222.240.167.84, 19346->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.119, 3702->> 68.161.199.59, 11692 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.250, 1837->> 220.181.23.12, 5008 (from PPPoE Outbound)
03/13/2006  12:13:10 **SYN Flood** 192.168.2.119, 3701->> 60.176.37.172, 17937 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 192.168.2.110, 3767->> 221.219.1.60, 4662 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 192.168.2.110, 3766->> 60.11.190.159, 4662 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 192.168.2.110, 3765->> 218.107.200.153, 4661 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 192.168.2.119, 3700->> 222.39.1.142, 16653 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 192.168.2.119, 3699->> 24.189.160.123, 24871 (from PPPoE Outbound)
03/13/2006  12:13:09 **SYN Flood** 221.10.18.38, 2244->> 222.35.144.213, 7625 (from PPPoE Inbound)
03/13/2006  12:13:08 **SYN Flood** 192.168.2.119, 3698->> 218.75.101.222, 17929 (from PPPoE Outbound)
03/13/2006  12:13:08 **SYN Flood** 192.168.2.100, 58413->> 66.249.89.104, 80 (from PPPoE Outbound)
03/13/2006  12:13:08 **SYN Flood** 192.168.2.119, 3697->> 169.233.13.231, 54550 (from PPPoE Outbound)
03/13/2006  12:13:08 **SYN Flood** 192.168.2.119, 3696->> 65.110.29.144, 14247 (from PPPoE Outbound)
03/13/2006  12:13:07 **SYN Flood** 192.168.2.170, 1472->> 219.156.123.23, 2000 (from PPPoE Outbound)
03/13/2006  12:13:07 **SYN Flood** 192.168.2.119, 3695->> 220.114.124.238, 10068 (from PPPoE Outbound)
03/13/2006  12:13:07 **SYN Flood** 192.168.2.110, 3764->> 60.26.10.189, 4662 (from PPPoE Outbound)
03/13/2006  12:13:07 **SYN Flood** 192.168.2.119, 3694->> 222.210.176.148, 26013 (from PPPoE Outbound)
03/13/2006  12:13:07 **SYN Flood** 192.168.2.119, 3693->> 218.68.238.213, 10052 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.119, 3692->> 59.35.121.249, 22417 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.110, 3763->> 221.222.200.5, 5148 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.110, 3762->> 212.241.88.189, 10700 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.110, 3761->> 221.217.75.98, 10700 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.110, 3760->> 221.196.156.87, 7553 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.110, 3759->> 221.208.133.27, 4662 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.250, 1836->> 220.181.23.12, 5008 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.108, 1154->> 219.156.123.70, 2000 (from PPPoE Outbound)
03/13/2006  12:13:06 **SYN Flood** 192.168.2.119, 3691->> 220.234.93.43, 13395 (from PPPoE Outbound)
03/13/2006  12:13:05 **SYN Flood** 192.168.2.119, 3690->> 71.141.175.181, 20774 (from PPPoE Outbound)
03/13/2006  12:13:05 **SYN Flood** 192.168.2.110, 3756->> 61.143.0.245, 7111 (from PPPoE Outbound)
03/13/2006  12:13:05 **SYN Flood** 192.168.2.100, 58413->> 66.249.89.104, 80 (from PPPoE Outbound)
03/13/2006  12:13:05 **SYN Flood** 192.168.2.119, 3688->> 218.97.250.194, 24854 (from PPPoE Outbound)
03/13/2006  12:13:05 **SYN Flood** 192.168.2.119, 3663->> 220.178.246.36, 1026 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.250, 1833->> 219.86.36.22, 18989 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.119, 3678->> 59.104.238.13, 6346 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 218.0.137.162, 17278->> 222.35.144.213, 26254 (from PPPoE Inbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3752->> 221.200.230.222, 4662 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3751->> 60.210.253.77, 7554 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3750->> 219.144.68.229, 4662 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3749->> 60.1.232.182, 5148 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3748->> 221.208.91.109, 10700 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.110, 3747->> 218.206.112.7, 4662 (from PPPoE Outbound)
03/13/2006  12:13:01 **SYN Flood** 192.168.2.119, 3677->> 24.199.85.199, 13899 (from PPPoE Outbound)
03/13/2006  12:13:00 **SYN Flood** 192.168.2.119, 3675->> 141.153.224.140, 10001 (from PPPoE Outbound)
03/13/2006  12:13:00 **SYN Flood** 192.168.2.119, 3674->> 221.238.147.12, 25036 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.119, 3673->> 169.233.13.231, 54550 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.119, 3672->> 220.170.84.156, 18700 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.250, 1832->> 220.181.23.12, 5008 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.108, 1152->> 219.156.123.28, 2000 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.119, 3663->> 220.178.246.36, 1026 (from PPPoE Outbound)
03/13/2006  12:12:59 **SYN Flood** 192.168.2.119, 3671->> 218.18.95.84, 8321 (from PPPoE Outbound)
03/13/2006  12:12:58 **SYN Flood** 192.168.2.110, 3746->> 60.25.25.104, 7559 (from PPPoE Outbound)
03/13/2006  12:12:58 **SYN Flood** 222.35.16.138, 1371->> 222.35.144.213, 445 (from PPPoE Inbound)
回复

使用道具 举报

 楼主| 发表于 2006-3-13 20:17:36 | 显示全部楼层
最让我疑惑的是,我浏览正常网友总是被当作syn flood
回复 支持 反对

使用道具 举报

发表于 2006-3-13 20:49:36 | 显示全部楼层
你的路由器上是不是带有防火墙?

如果有重新配置一下试试。
回复 支持 反对

使用道具 举报

 楼主| 发表于 2006-3-13 21:31:15 | 显示全部楼层
是的,有防火墙
  2. Intrusion Detection
  4. When the SPI (Stateful Packet Inspection) firewall feature is enabled, all packets can be blocked.  Stateful Packet Inspection (SPI) allows full support of different application types that are using dynamic port numbers.  For the applications checked in the list below, the Barricade will support full operation as initiated from the local LAN.
  6. The Barricade firewall can block common hacker attacks, including IP Spoofing, Land Attack, Ping of Death, IP with zero length, Smurf Attack, UDP port loopback, Snork Attack, TCP null scan, and TCP SYN flooding.
  8.     * Intrusion Detection Feature
  10.       SPI and Anti-DoS firewall protection :        
  11.       RIP defect :        
  12.       Discard Ping To WAN :        
  14.     * Stateful Packet Inspection
  16.       Packet Fragmentation        
  17.       TCP Connection        
  18.       UDP Session        
  19.       FTP Service        
  20.       H.323 Service        
  21.       TFTP  Service        
  23.     * When hackers attempt to enter your network, we can alert you by e-mail
  25.       Your E-mail Address :
  26.       SMTP Server Address :
  27.       POP3 Server Address :
  28.       User name :
  29.       Password :
  31.     * Connection Policy
  33.       Fragmentation half-open wait: secs
  34.       TCP SYN wait: sec.
  35.       TCP FIN wait: sec.
  36.       TCP connection idle timeout: sec.
  37.       UDP session idle timeout: sec.
  38.       H.323 data channel idle timeout: sec.
  40.     * DoS Detect Criteria:
  42.       Total incomplete TCP/UDP sessions HIGH: session
  43.       Total incomplete TCP/UDP sessions LOW: session
  44.       Incomplete TCP/UDP sessions (per min) HIGH: session
  45.       Incomplete TCP/UDP sessions (per min) LOW: session
  46.       Maximum incomplete TCP/UDP sessions number from same host:
  47.       Incomplete TCP/UDP sessions detect sensitive time period: msec.
  48.       Maximum half-open fragmentation packet number from same host:
  49.       Half-open fragmentation detect sensitive time period: msec.
  50.       Flooding cracker block time: sec.
复制代码
回复 支持 反对

使用道具 举报

 楼主| 发表于 2006-3-13 21:33:01 | 显示全部楼层
现在把
  1. Maximum incomplete TCP/UDP sessions number from same host:
复制代码
的数值由原来的10调到50,好像有些效果。
回复 支持 反对

使用道具 举报

发表于 2006-3-13 22:27:08 | 显示全部楼层
你仔细看看你的路由器的说明书。

给你一个建议:
如果你只允许内网访问外网,可以设置为不允许外网主动访问内网,而内网对外网的主动访问可以设置得宽松一些。

当然得你的路由器支持这样的操作。
回复 支持 反对

使用道具 举报

 楼主| 发表于 2006-3-13 23:06:56 | 显示全部楼层
说明书是英文的,能否推荐个入门的教程?
我现在连比较基本的概念还不太熟悉呢?
回复 支持 反对

使用道具 举报

发表于 2006-3-13 23:11:58 | 显示全部楼层
两难也得看!
因为每个设备的设置方法都不尽相同。
回复 支持 反对

使用道具 举报

发表于 2006-3-13 23:14:50 | 显示全部楼层
如果可以的话,看看有关TCP/IP方面的中文资料。
还可以看看http://www.netfilter.org/ 这个东西是Linux包过滤的核心,那些基于linux系统的设备应该用的都是这个。
回复 支持 反对

使用道具 举报

 楼主| 发表于 2006-3-14 09:23:42 | 显示全部楼层
谢谢!
回去好好看看。
回复 支持 反对

使用道具 举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

快速回复 返回顶部 返回列表