Re: Something nasty in the Net shed..

"The Natural Philosopher" <a@xxx> wrote in message news:1205176861.24063.0@xxxxxxxxxxxxxxxxxxxxxxxxx
I got hit TWICE in $ DAYS fr a 'top up' as I had 'exceeded my quota'

How, I thought, could I have managed to download 2GB in just two days?


When I wasn't even ON the machine most of the time..watching the rugby, doing the garden...

Hmm. what does the router say? Cripes! 3 million packets!

What else does it say..?

A series of echo storm attack for most of sunday afternoon and evening.

What does my ISP say? (Clara) 'tough' ..well not in so many words..

Can I stop the DSL-504 from responding to pings? apparently not. Bugger bugger bugger. The firewall only works on stuff that is being passed through it.

Not bounced off it.

Anyone know a wired DSL router that will block incoming pings, but let me ping out?

And still let me firewall on an incoming basis? the last one I set up (Belkin I think) only firewalled OUTGOING stuff, Once you had incoming on, anyone on any IP address could get in that way..

Normal NAT bollocks of course..



It depends on how you are being billed.
If you are being charged for download, then there's nothing you can do at your end.
The packet has gone through the meter at the ISP's end, and been clocked down your line, before it hits any firewalling at your end. By then it's too late. It's been charged for.

By not responding to the pings, you can prevent the upload responses, if you are billed for them.

On the DSL-504 ( which I have here, but I use a no-nat config with a seperate firewall ), how about:

Configuration -> Advanced Filtering and Firewall;
Create a rule to block ICMP:

Select Index to Set: 1 ( or whatever )
Item Name: Pings ( or call it whatever you want )
State: Enabled
Pass or block: Block
Interface: ISP1 ( or whatever the WAN interface is called )
Protocol: ICMP
Leave all the addresses / masks set to zero as per default.
Hit 'Add'.

See how that works.

--
Ron




.

Relevant Pages

  • Something nasty in the Net shed..
    ... Bugger bugger bugger. ... The firewall only works on stuff that is being passed through it. ... Anyone know a wired DSL router that will block incoming pings, ...
    (uk.telecom.broadband)
  • Re: Something nasty in the Net shed..
    ... The firewall only works on stuff that is being passed through it. ... Anyone know a wired DSL router that will block incoming pings, ... If you are being charged for download, then there's nothing you can do at your end. ... Interface: ISP1 ...
    (uk.telecom.broadband)
  • Re: WindowsXP slower after reinstall.
    ... Did you install the drivers for your motherboard, ... >>> this I can reinstall them from backup. ... >> Did you get on the Internet unprotected by a firewall or antivirus? ... >> Direct Download of Service Pack 2 for Windows XP ...
    (microsoft.public.windowsxp.basics)
  • Re: WindowsXP slower after reinstall.
    ... > Did you get on the Internet unprotected by a firewall or antivirus? ... > Also - did you test your hardware before reinstalling - it could be a bad ... > will have to do whatever you did before to get them installed or download ... > You can see the critical patches released for a given ...
    (microsoft.public.windowsxp.basics)
  • Re: WindowsXP slower after reinstall.
    ... > Did you get on the Internet unprotected by a firewall or antivirus? ... > Also - did you test your hardware before reinstalling - it could be a bad ... > will have to do whatever you did before to get them installed or download ... > You can see the critical patches released for a given ...
    (microsoft.public.windowsxp.basics)