Hi ,
in my servers i was recive a lot of botnets attacks but ,,
since a few months i find one way to attack protection ..
the first steps is install the snort_inline and make your iptables whi queue mode to enable the sniffing packets system.
then update the snort_inline rules and run the exec.
do this and make your udp block for externals conections except the 53 port..
and your server will be protec against botnets.
im appologies for my english .. im from argentina .. sorry.
in my servers i was recive a lot of botnets attacks but ,,
since a few months i find one way to attack protection ..
the first steps is install the snort_inline and make your iptables whi queue mode to enable the sniffing packets system.
then update the snort_inline rules and run the exec.
do this and make your udp block for externals conections except the 53 port..
and your server will be protec against botnets.
im appologies for my english .. im from argentina .. sorry.
