Are there any firewalls that protect against dos attacks? I keep getting flooded and its really annoying?

I've tried many firewalls and they dont protect til its too late
Answer:

Its important to know if you're facing a DoS attack, or a DDoS attack, DDoS is distributed, and when you say he has a few machines/boxes I'm going to assume here that you're talking about a DDoS / Ping of death / I'm a script kiddie and don't know what I'm doing. Blocking a DDoS attack is quite trivial actually. I'm going to assume you use Windows but these same principles may be applied to a Unix based OS. Step 1: Download and install NetCat http://netcat.sourceforge.net/ Step 2: Run Netcat and listen on all ports and Log the ports/ packets and IP addresses that are DDoS'in you. Step 3: Set up firewall rules blocking, they type of packet they're sending, and all the addresses they're coming from, unless this kid has over 200,000 boxes it will be very easy to get all the IP's shes using, once you have the IP's and the type of packet they're sending just apply them to a firewall rule set, and if shes sending different / random packets just use the IP addresses for the rule set. VERY EASY. if its a DoS attack.. well just update your computer and you'll be fine.

Karen at Yahoo! Answers Visit the source

Was this solution helpful to you?

Other answers

I highly recommend the zone alarm free version. It is very effective.

kernel_sanders

If you're talking about a software firewall, then no. By definition you're already toast by the time your software firewall intercepts the traffic. Indeed, if an attacker is using more than 4 or 5 machines to attack, nothing you can do on a Cable/DSL modem will help, short of getting your ISP to help.

Mike

Thre is no way to prevent a dos attack. If you understand what a dos attack is, you will know why. A dos attack is caused by a malicious person/people who flood (send a million packets) your ip address with information/data. A firewall cant protect you because the data has to be sent through your modem before it even gets to your firewall. If the modem cant handle all the data, it starts to drop packets, and you cant get the data you want out. The only way that you can stop a dos attack is to get a larger internet pipe. So unfortuneately, youre only real option (without spending money to get a bigger and better connection) is to just wait it out. To learn more about dos attacks, see http://www.grc.com/sn/SN-008.htm It is a weekly podcast, this one talks about dos attacks. There are also audio links at the top of the page.

madh2orat

Related Q & A:

How do I get rid of the BETA message I keep getting?Best solution by support.mozilla.org
Why do I keep getting booted out of Yahoo IM?Best solution by Yahoo! Answers
Why do I keep getting disconnected from YM?Best solution by answers.yahoo.com
Why do I keep getting back email that I sent failure?Best solution by Yahoo! Answers
Why do I keep getting an error message when I use Yahoo?Best solution by Yahoo! Answers

Just Added Q & A:

How many active mobile subscribers are there in China?Best solution by Quora
How to find the right vacation?Best solution by bookit.com
How To Make Your Own Primer?Best solution by thekrazycouponlady.com
How do you get the domain & range?Best solution by ChaCha
How do you open pop up blockers?Best solution by Yahoo! Answers

For every problem there is a solution! Proved by Solucija.

Got an issue and looking for advice?
Ask Solucija to search every corner of the Web for help.
Get workable solutions and helpful tips in a moment.

Just ask Solucija about an issue you face and immediately get a list of ready solutions, answers and tips from other Internet users. We always provide the most suitable and complete answer to your question at the top, along with a few good alternatives below.