Basically
I am receiving a lot of packets/data with random info on UDP protocol.
Packet has header and then a lot of XXXXXXX in it's content.
I assume it is UDP flood but it comes from different web/dedi hosting companies.
Also this basically uses up all of download speed. Upload speed stays 0-1kb/s
Is there a way to fight this?
Thanks
Best Answer
Doesn't matter if you have any UDP services running, even if you drop every UDP-packet in example iptables your RX buffer (that is, your incoming network link) will be saturated.
Try it yourself with a simple udp flood script and monitor the RX/TX buffer with iftop.
You simply have to contact your ISP to block them higher up in the chain. Either that or get a fatter line which has more capacity than the attacks.