Set maximum UDP Packetbytelength for anti crash (eg. q3infoboom) [via FIREWALL (IPTABLES)] for LINUX

To ensure that UDP packets longer than 750 bytes are ignored on a specific port (e.g., 12345), you can use iptables. Here’s how to set it up:

Add a rule to the INPUT chain to accept UDP packets on port 12345 if they are 750 bytes or less:
```
 
```
```
sudo iptables -A INPUT -p udp --dport 12345 -m length --length 0:750 -j ACCEPT
```
(u have to edit the port 12345 to your actual server port, and repeat it for every port you open a server on)
Add a rule to the INPUT chain to drop UDP packets on port 12345 if they are greater than 750 bytes:
```
 
```
```
sudo iptables -A INPUT -p udp --dport 12345 -m length --length 751: -j DROP
```
(u have to edit the port 12345 to your actual server port, and repeat it for every port you open a server on)

Explanation of the Rules:

First Rule:
- -A INPUT: Appends a rule to the INPUT chain.
- -p udp: Applies to UDP packets.
- --dport 12345: Applies to packets destined for port 12345.
- -m length --length 0:750: Uses the length module to check the packet length. This rule accepts packets with lengths between 0 and 750 bytes (inclusive).
- -j ACCEPT: Accepts packets that match the preceding criteria.
Second Rule:
- -A INPUT: Appends a rule to the INPUT chain.
- -p udp: Applies to UDP packets.
- --dport 12345: Applies to packets destined for port 12345.
- -m length --length 751:: Uses the length module to check the packet length. This rule drops packets with lengths greater than 750 bytes.
- -j DROP: Drops packets that match the preceding criteria.

Applying and Verifying the Rules:

View the current iptables rules:

To see the current rules and identify their line numbers, use the following command:
```
 
```
```
sudo iptables -L -v -n --line-numbers
```
Verify that the rules have been applied:

To ensure the rules have been applied correctly, view the iptables rules again:
```
 
```
```
sudo iptables -L -v -n
```

Saving the Changes:

Ensure that the changes are saved permanently so they persist after a system reboot:

Debian/Ubuntu:
```
 
```
```
sudo netfilter-persistent save
```
Red Hat/CentOS:
```
 
```
```
sudo service iptables save
```

Summary:

Add the rules:

sudo iptables -A INPUT -p udp --dport 12345 -m length --length 0:750 -j ACCEPT sudo iptables -A INPUT -p udp --dport 12345 -m length --length 751: -j DROP

(u have to edit the port 12345 to your actual server port, and repeat it for every port you open a server on)

View the current iptables rules:
```
 
```
```
sudo iptables -L -v -n --line-numbers
```

Save the changes:

Debian/Ubuntu:
```
sudo netfilter-persistent save
```
Red Hat/CentOS:
```
 
```
```
sudo service iptables save
```

With these steps, you ensure that only UDP packets of 750 bytes or less are accepted on port 12345, and larger packets are dropped. It wont be crashable via q3infoboom after setting up this firewall rule.

u can see your rules with:

sudo iptables -L -v -n --line-numbers

delete rules with (deletes 1 line):

iptables -D INPUT 1

Sign In

Set maximum UDP Packetbytelength for anti crash (eg. q3infoboom) [via FIREWALL (IPTABLES)] for LINUX

Explanation of the Rules:

Applying and Verifying the Rules:

Saving the Changes:

Summary:

User Feedback

Recommended Comments

Create an account or sign in to comment

Create an account

Sign in

Recently Updated

Recent Tutorial Activity

How to edit your NPCs into wielding whatever weapon you want

How to edit your NPCs into wielding whatever weapon you want

Frankenstein or Kitbashing models in Blender 2.9x for Jedi Academy

How to make a new force power (Single player)

A Complete Guide To Making A Custom Skin

jamme 8. How to use jaMME on Android

Home

Forums

Files

Tutorials

Services